Get a Pentest and security assessment of your IT network.

Cyber Security

BYO-Bug Tactic Attacks Windows Kernel with Outdated Driver

The RobbinHood ransomware is using a deprecated Gigabyte driver as the tip of the spear for taking out antivirus products. The driver has a known vulnerability (CVE-2018-19320), and was discontinued in 2018 by the company. The Verisign certificate used to digitally sign the driver has not been revoked, so the signature remains valid. The bring-your-own-bug tactic is likely to crop up in other attacks going forward, according to security analysts.

Source: https://threatpost.com/byo-bug-windows-kernel-outdated-driver/152762/

Related posts
Cyber Security

Zip Codes & PII: Are They Personal Data?

Cyber Security

Zero-Day Vulnerabilities: User Defence Guide

Cyber Security

Zero Knowledge Voting with Trusted Server

Cyber Security

ZeroNet: 51% Attack Risks & Mitigation