The ALPHV ransomware group (aka BlackCat) was observed employing signed malicious Windows kernel drivers to evade detection by security software during attacks. The driver seen by Trend Micro is an ...
Microsoft blocked code signing certificates predominantly used by Chinese hackers and developers to sign and load malicious kernel mode drivers on breached systems by exploiting a Windows policy ...
The FPS Review on MSN
Microsoft's April 2026 Windows update ends trust for cross-signed kernel drivers
Microsoft is closing a security gap that has been open for roughly twenty years. Starting with the April 2026 Windows update, the company will remove default trust for kernel drivers signed through ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results