(ORDO NEWS) — Unknown intruders used drivers to send viruses.
Journalists referred to the results of a study of several companies involved in computer security.
Experts found out that hackers used Microsoft-signed drivers to download malware onto users’ computers through them. In particular, using this method, the scammers deployed the Cuba ransomware.
According to the authors of the study, in order to sign their software and thus bypass Windows protection, attackers had to go through a complex Microsoft certification process.
“The main problem is that most security solutions trust everything signed by Microsoft,” said SentinelOne.
Microsoft responded to the issue by saying it had investigated and found that the activity was “limited to the abuse of multiple developer program accounts.”
The company has already revoked the certificates of the malware that turned out to be.
In October, ArsTechnica journalists reported that hackers had found a way to infect PCs with viruses through a Windows vulnerability. During the attack, unknown people used drivers with weak protection.
—
Online:
Contact us: [email protected]
Our Standards, Terms of Use: Standard Terms And Conditions.