News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Big bunch of bad drivers

    Posted on August 11th, 2019 at 16:17 woody Comment on the AskWoody Lounge

    At the DEFCON conference this week, a security company called Elysium released quite a bombshell:

    Our analysis found that the problem of insecure drivers is widespread, affecting more than 40 drivers from at least 20 different vendors – including every major BIOS vendor, as well as hardware vendors like ASUS, Toshiba, NVIDIA, and Huawei. However, the widespread nature of these vulnerabilities highlights a more fundamental issue – all the vulnerable drivers we discovered have been certified by Microsoft. Since the presence of a vulnerable driver on a device can provide a user (or attacker) with improperly elevated privileges, we have engaged Microsoft to support solutions to better protect against this class of vulnerabilities, such as blacklisting known bad drivers.

    In this case, “insecure” drivers are ones that can be used for privilege escalation attacks: A malicious program running on your machine can hook into the driver and get at (or change) key internal data.

    Good overview by Catalin Cimpanu at ZDNet.