Dark Reading

Field Effect Finds Kernel Elevation of Privilege Vulnerabilities in Almost Every Version of Microsoft Windows Currently Used

OTTAWA, ON, Aug. 12, 2021 /PRNewswire/ - Field Effect, a global cyber security company specializing in intelligence-grade protection for small and mid-sized businesses, recommends Microsoft Windows ...
CSO Online

Attackers exploit decade‑old Windows driver flaw to shut down modern EDR defenses

Attackers abused a signed but long-revoked EnCase Windows kernel driver in a BYOVD attack to terminate all security tools.
Dark Reading

Microsoft-Signed Chinese Adware Opens the Door to Kernel Privileges

Researchers have stumbled upon a fake ad blocker marketed to Internet cafés in China that, in fact, conceals sophisticated, multifaceted, kernel-level malware. "HotPage.exe," present on VirusTotal ...
CSOonline

Microsoft shifts focus to kernel-level security after CrowdStrike incident

The CrowdStrike incident that affected more than 8.5 million Windows PCs worldwide and forced users to face the “Blue Screen of Death,” made Microsoft sit down and revisit the resilience of its ...
SDxCentral

Paragon Partition Manager driver flaws enable privilege escalation and DoS attacks

Paragon Partition Manager's BioNTdrv.sys, prior to version 2.0.0, includes five vulnerabilities allowing privilege escalation and DoS attacks. Paragon Partition Manager's BioNTdrv.sys driver, versions ...