-
Scattered Spider hackers use old Intel driver to bypass security
A financially motivated threat actor tracked as Scattered Spider was observed attempting to deploy Intel Ethernet diagnostics drivers in a BYOVD (Bring Your Own Vulnerable Driver) attack to evade detection from EDR (Endpoint Detection and Response) security products.
- January 11, 2023
- 04:55 PM
6
-
Bluebottle hackers used signed Windows driver in attacks on banks
A signed Windows driver has been used in attacks on banks in French-speaking countries, likely from a threat actor that stole more than $11 million from various banks.
- January 05, 2023
- 07:00 AM
1
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Microsoft-signed malicious Windows drivers used in ransomware attacks
Microsoft has revoked several Microsoft hardware developer accounts after drivers signed through their profiles were used in cyberattacks, including ransomware incidents.
- December 13, 2022
- 06:10 PM
- 1
-
NVIDIA releases GPU driver update to fix 29 security flaws
NVIDIA has released a security update for its GPU display driver for Windows, containing a fix for a high-severity flaw that threat actors can exploit to perform, among other things, code execution and privilege escalation.
- November 30, 2022
- 11:27 AM
- 0
-
Lenovo fixes flaws that can be used to disable UEFI Secure Boot
Lenovo has fixed two high-severity vulnerabilities impacting various ThinkBook, IdeaPad, and Yoga laptop models that could allow an attacker to deactivate UEFI Secure Boot.
- November 09, 2022
- 11:03 AM
- 0
-
Microsoft fixes Windows vulnerable driver blocklist sync issue
Microsoft says it addressed an issue preventing the Windows kernel vulnerable driver blocklist from being synced to systems running older Windows versions.
- October 26, 2022
- 05:22 AM
- 3
-
Lazarus hackers abuse Dell driver bug using new FudModule rootkit
The notorious North Korean hacking group 'Lazarus' was seen installing a Windows rootkit that abuses a Dell hardware driver in a Bring Your Own Vulnerable Driver attack.
- October 01, 2022
- 10:05 AM
- 0
-
Hackers abuse Genshin Impact anti-cheat system to disable antivirus
Hackers are abusing an anti-cheat system driver for the immensely popular Genshin Impact game to disable antivirus software while conducting ransomware attacks.
- August 25, 2022
- 04:05 PM
- 3
-
NVIDIA fixes ten vulnerabilities in Windows GPU display drivers
NVIDIA has released a security update for a wide range of graphics card models, addressing four high-severity and six medium-severity vulnerabilities in its GPU drivers.
- May 17, 2022
- 03:12 PM
- 0
-
NVIDIA has open-sourced its Linux GPU kernel drivers
NVIDIA has published the source code of its kernel modules for the R515 driver, using a dual licensing model that combines the GPL and MIT licenses, making the modules legally re-distributable.
- May 12, 2022
- 10:31 AM
- 1
-
Lenovo UEFI firmware driver bugs affect over 100 laptop models
Lenovo has published a security advisory on vulnerabilities that impact its Unified Extensible Firmware Interface (UEFI) loaded on at least 100 of its laptop models.
- April 19, 2022
- 09:01 AM
- 3
-
AMD confirms GPU driver bug overclocks CPUs without permission
AMD is investigating an issue in its GPU software suite that causes an auto-adjustment of AMD Ryzen CPU performance settings for users without permission.
- April 06, 2022
- 09:53 AM
- 0
-
New Windows security feature blocks vulnerable drivers
Microsoft will allow Windows users to block drivers with known vulnerabilities with the help of Windows Defender Application Control (WDAC) and a vulnerable driver blocklist.
- March 28, 2022
- 02:02 PM
- 0
-
Dell driver fix still allows Windows Kernel-level attacks
Dell's driver fix of the CVE-2021-21551 vulnerability leaves margin for catastrophic BYOVD attacks resulting in Windows kernel driver code execution.
- December 13, 2021
- 03:21 PM
- 1
-
AMD fixes dozens of Windows 10 graphics driver security bugs
AMD has fixed a long list of security vulnerabilities found in its graphics driver for Windows 10 devices, allowing attackers to execute arbitrary code and elevate privileges on vulnerable systems.
- November 11, 2021
- 01:13 PM
- 0
-
Microsoft: New Windows driver deployment service coming soon
Microsoft said that the new Windows Update for Business deployment service for drivers and firmware will be available in Microsoft Endpoint Manager and in Microsoft Graph as a public preview starting with the first half of 2022.
- November 07, 2021
- 10:00 AM
- 5
-
Windows 11's October 2021 release date hinted in support docs
A planned October 2021 release date for Windows 11 has been accidentally leaked in support documents from both Microsoft and Intel.
- August 03, 2021
- 11:55 AM
- 5
-
Remote print server gives anyone Windows admin privileges on a PC
A researcher has created a remote print server allowing any Windows user with limited privileges to gain complete control over a device simply by installing a print driver.
- July 31, 2021
- 02:23 PM
- 1
-
NVIDIA WHQL Drivers now officially supports Windows 10 21H1
Today, NVIDIA released the Game Ready WHQL Driver 471.11, and it now officially supports Windows 10 21H1, the May 2021 Update, for the first time.
- June 22, 2021
- 01:51 PM
- 0
-
Microsoft no longer offers Windows 7 drivers via Windows Update
Microsoft says it no longer offers drivers for Windows 7 and Windows Server 2008 systems through Windows Update starting today.
- June 17, 2021
- 04:39 PM
- 1
1
