Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel
Monday, 28 October 2024
by Ayman Hamam
A new attack technique could be used to bypass Microsoft’s Driver Signature Enforcement (DSE) on fully patched Windows systems, leading to operating system (OS) downgrade attacks. “This bypass allows loading unsigned kernel drivers, enabling attackers to deploy custom rootkits that can neutralize security controls, hide processes and network activity, maintain stealth, and much more,” SafeBreach
- Published in News