Hackers Exploit Windows Policy Loophole to Forge Kernel-Mode Driver Signatures <!-- wp:html --><p>A Microsoft Windows policy loophole has been observed being exploited primarily by native Chinese-speaking threat actors to forge signatures on kernel-mode drivers.<br /> "Actors are leveraging multiple open-source tools that alter the signing date of kernel mode drivers to load malicious and unverified drivers signed with expired certificates," Cisco Talos said in an exhaustive two-part report shared <a href="http://thehackernews.com/2023/07/hackers-exploit-windows-policy-loophole.html" target="_blank" class="feedzy-rss-link-icon" rel="noopener">Read More</a> </p> <p>The Hacker News | #1 Trusted Cybersecurity News Site </p><!-- /wp:html -->
A Microsoft Windows policy loophole has been observed being exploited primarily by native Chinese-speaking threat actors to forge signatures on kernel-mode drivers.
"Actors are leveraging multiple open-source tools that alter the signing date of kernel mode drivers to load malicious and unverified drivers signed with expired certificates," Cisco Talos said in an exhaustive two-part report shared Read More
The Hacker News | #1 Trusted Cybersecurity News Site
