Bleeping Computer

Malicious Windows kernel drivers used in BlackCat ransomware attacks

The ALPHV ransomware group (aka BlackCat) was observed employing signed malicious Windows kernel drivers to evade detection by security software during attacks. The driver seen by Trend Micro is an ...
Threat Post

BYO-Bug Tactic Attacks Windows Kernel with Outdated Driver

The RobbinHood ransomware is using a deprecated Gigabyte driver as the tip of the spear for taking out antivirus products. The operators behind the RobbinHood ransomware are using a vulnerable, legacy ...
TWCN Tech News

Windows can’t install the kernel-mode print driver

When trying to add a printer to your Windows computer, you may encounter an error that says Windows can’t install the kernel-mode print driver. This just means that ...
Dark Reading

Hackers Exploit Policy Loophole in Windows Kernel Drivers

Hackers are using open source tools to exploit a Windows policy loophole for kernel mode drivers to load malicious and unverified drivers with expired certificates, researchers have found. The ...