#RootkitThreats

Researchers Uncover OS Downgrade Vulnerability Targeting Microsoft Windows Kernel

by

October 28, 2024 at 01:42AM A new attack method can bypass Microsoft’s Driver Signature Enforcement on up-to-date Windows systems, enabling the loading of unsigned drivers and potential OS downgrades. This technique allows attackers to deploy rootkits, compromising system security. Enabling Virtualization-Based Security with UEFI lock and Mandatory flag can mitigate these vulnerabilities. ### Meeting Takeaways … Read more

New Stealthy ‘Krasue’ Linux Trojan Targeting Telecom Firms in Thailand

by

December 7, 2023 at 01:54AM A new Linux trojan named Krasue, discovered targeting Thai telecoms since 2021, offers attackers persistent network access. Utilizing rootkits and evading detection with innovative tactics, its origins and deployment methods remain unclear. Similarities with XorDdos malware suggest a possible common creator. Security analysts stress the need for ongoing vigilance. Key … Read more