Microsoft plans to patch a zero-day kernel vulnerability found by Google’s Project Zero team. The privilege escalation bug creates a locally accessible attack surface related to the Windows Kernel Cryptography Driver. Microsoft will not release a patch until Nov. 10. The bug has not been used in election-related attacks, Project Zeros technical lead Ben Hawkes says. The U.S. government has been on close watch for suspicious cyber activity as the presidential election draws closer.”]
Source: https://www.govinfosecurity.com/microsoft-will-patch-zero-day-flaw-found-by-google-a-15292