News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • Over 40 drivers… backdoor

    Posted on Bertram Pincus Comment on the AskWoody Lounge

    Home Forums Code Red – Security/Privacy advisories Over 40 drivers… backdoor

    This topic contains 2 replies, has 3 voices, and was last updated by  mngerhold 1 week, 4 days ago.

    • Author
      Posts
    • #1906562 Reply

      Bertram Pincus
      AskWoody Lounger

      Someone mentioned the NVIDIA patches, just below this post… probably a day or two ago (Im wondering if the patches were related to the driver-exploits summed-up in the link below).  Gigabyte, Intel, Toshiba, ASUS, Realtek, e.t.

      This is scary stuff (up there with all the side-channel PoCs, imho).  Between all my machines, like many of you Id guess, I’m potentially exposed.  If anyone can follow-up with the Github script (to aid in looking for wormhole drivers), please feel free to post (I’ll do the same once I see it).

      Good luck… hope you’re lucky enough to escape any driver manufactures listed below.

      https://thehackernews.com/2019/08/windows-driver-vulnerability.html

      1 user thanked author for this post.
    • #1906586 Reply

      Alex5723
      AskWoody Plus

      Someone mentioned the NVIDIA patches, just below this post… probably a day or two ago (Im wondering if the patches were related to the driver-exploits summed-up in the link below).  Gigabyte, Intel, Toshiba, ASUS, Realtek, e.t.

      This is scary stuff (up there with all the side-channel PoCs, imho).  Between all my machines, like many of you Id guess, I’m potentially exposed.  If anyone can follow-up with the Github script (to aid in looking for wormhole drivers), please feel free to post (I’ll do the same once I see it).

      Good luck… hope you’re lucky enough to escape any driver manufactures listed below.

      https://thehackernews.com/2019/08/windows-driver-vulnerability.html

      Eclypsium source at : https://eclypsium.com/2019/08/10/screwed-drivers-signed-sealed-delivered/

      DefCon presentation : https://eclypsium.com/wp-content/uploads/2019/08/EXTERNAL-Get-off-the-kernel-if-you-cant-drive-DEFCON27.pdf

      • This reply was modified 1 week, 5 days ago by  Alex5723.
      2 users thanked author for this post.
    • #1906952 Reply

      mngerhold
      AskWoody Lounger

      You’d be lucky to manage to avoid all those companies!  I have read the Eclypsium report, but it seems to me to be simply a summary that ‘there have been some messed-up drivers’ recently – it doesn’t seem to expose anything new.  The linked Gigabyte weakness, for example, was reported by them in late 2018 (I’m interested in that, because I have a Gigabyte utility installed that is apparently vulnerable).  So is this anything new to worry about?

      1 user thanked author for this post.

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: Over 40 drivers… backdoor

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.