Security News > 2024 > October > Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel
2024-10-28 05:29
A new attack technique could be used to bypass Microsoft's Driver Signature Enforcement (DSE) on fully patched Windows systems, leading to operating system (OS) downgrade attacks. "This bypass allows loading unsigned kernel drivers, enabling attackers to deploy custom rootkits that can neutralize security controls, hide processes and network activity, maintain stealth, and much more," SafeBreach
News URL
https://thehackernews.com/2024/10/researchers-uncover-os-downgrade.html
Related news
- Researchers Discover "Bootkitty" – First UEFI Bootkit Targeting Linux Kernels (source)
- Microsoft says premature patch could make Windows Recall forget how to work (source)
- Microsoft says having a TPM is "non-negotiable" for Windows 11 (source)
- Microsoft Fixes 72 Flaws, Including Patch for Actively Exploited CLFS Vulnerability (source)
- Microsoft lifts Windows 11 24H2 block on PCs with USB scanners (source)
- Patch Tuesday: Microsoft Patches One Actively Exploited Vulnerability, Among Others (source)
- Windows kernel bug now exploited in attacks to gain SYSTEM privileges (source)
- Microsoft says Auto HDR causes game freezes on Windows 11 24H2 (source)
- Microsoft adds another problem to the Windows 11 24H2 naughty list (source)
- Researchers Uncover Nuclei Vulnerability Enabling Signature Bypass and Code Execution (source)