Security Stop-Press : Signed Malicious Windows Drivers Used In Ransomware Attacks
- December 21, 2022
- News
It’s been reported that kernel-mode hardware drivers that have been certified (signed) by Microsoft’s Windows Hardware Developer Program have been used maliciously in post-exploitation cyber attacks, i.e. where the attacker had already gained administrative privileges on compromised systems.
The attacks have been linked to known ransomware and SIM swappers. It is understood that Microsoft has now released security updates to revoke the certificates, has suspended the accounts used to submit the drivers to be signed, and is working on a further detection measures.
About us and this blog
We are a IT solutions and support company. In our BLOG you can find more information about services and solutions we provide and learn how they can benefit you and your business.
We offer professional IT support for small and medium size businesses, as well as support home based businesses.
To check how we can help improve your security and productivity, request your FREE IT health check today!
Categories
Archives
- September 2024
- August 2024
- July 2024
- June 2024
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023
- June 2023
- May 2023
- April 2023
- March 2023
- February 2023
- January 2023
- December 2022
- November 2022
- October 2022
- September 2022
- August 2022
- July 2022
- June 2022
- May 2022
- April 2022
- March 2022
- February 2022
- January 2022
- December 2021
- July 2020
- June 2020
- May 2020
- April 2020
- March 2020
- February 2020
- January 2020
More from our blog
See all postsTags
Categories
- Brand development (4)
- Business advice (19)
- education (14)
- News (961)
- Uncategorized (14)