The problem is in the driver code that enables communication between the OS kernel and the hardware, providing a higher permission level than a normal user or an administrator.
The driver vulnerabilities could affect millions
The list of hardware manufacturers affected include huge companies like Intel, Nvidia, Huawei, Toshiba, and Asus. Here’s how the cybersecurity team at Eclypsium, who found the vulnerabilities, describe them: This means that the faulty drivers could allow malicious apps gain kernel privileges, affecting directly the firmware and the hardware. Furthermore, reinstalling the OS won’t solve the problem. This is the case with BIOS and UEFI firmware that once affected, can’t be repaired by a OS reinstall.
All versions of Windows are affected
It’s worth mentioning that over 40 drivers were affected, and the issue applies to all versions of Windows, not just Windows 10. Microsoft is strongly advising its customers to use Windows Defender Application Control to block unknown software and to turn on memory integrity for capable devices in Windows Security. Here’s the full list of affected vendors:
ASRock ASUSTeK Computer ATI Technologies (AMD) Biostar EVGA Getac GIGABYTE Huawei Insyde Intel Micro-Star International (MSI) NVIDIA Phoenix Technologies Realtek Semiconductor SuperMicro Toshiba
Some of them have already deployed fixes, but others are still under embargo. To keep your system safe, be sure to regularly scan for outdated drivers and install the latest driver fixes from the aforementioned manufacturers. To help you, we’ve prepared a guide on how to update outdated drivers, so be sure to check it out. READ ALSO:
How to: Update graphics driver on Windows 10 9 best antivirus software with encryption to secure your data Microsoft Defender ATP is the new cross-platform security offering from Microsoft
Name *
Email *
Commenting as . Not you?
Save information for future comments
Comment
Δ
