Security News > 2022 > March > New Windows security feature blocks vulnerable drivers
Microsoft now allows Windows users to block drivers with known vulnerabilities with the help of Windows Defender Application Control and a vulnerable driver blocklist.
It works on devices running Windows 10, Windows 11, and Windows Server 2016 and above with hypervisor-protected code integrity enabled and on Windows 10 systems in S mode.
WDAC, the software-based security layer that blocks the vulnerable drivers, protects Windows systems against potentially malicious software by ensuring that only trusted drivers and apps can run, blocking malware and unwanted software from launching.
The vulnerable driver blocklist used by this new Windows security option is kept up to date with the help of independent hardware vendors and Original Equipment Manufacturers.
The "Microsoft Vulnerable Driver Blocklist" option can be toggled on from Windows Security > Device security > Core isolation.
Microsoft also plans to launch a new deployment service for drivers and firmware to give Windows admins complete control over driver updates by allowing them to select the right drivers for devices on their enterprise networks.
News URL
Related news
- Windows 10 KB5044273 update released with 9 fixes, security updates (source)
- Microsoft plans to boot security vendors out of the Windows kernel (source)
- Microsoft announces new and improved Windows 11 security features (source)
- Microsoft Launches Windows Resiliency Initiative to Boost Security and System Integrity (source)
- Security? We've heard of it: How Microsoft plans to better defend Windows (source)