Computerworld

Microsoft says rootkit caused Windows blue screens

Microsoft late on Wednesday confirmed that a rootkit caused Windows PCs to crash after users applied a security patch issued last week. Only systems infected with the Alureon rootkit were ...

New Windows updates replace expiring Secure Boot certificates

Microsoft has started rolling out new Secure Boot certificates that will automatically install on eligible Windows 11 24H2 ...
CSOonline

Windows path conversion weirdness enables unprivileged rootkit behavior

Attackers can take advantage of how Windows converts file paths between the traditional DOS format to the more modern NT format in order to achieve rootkit-based capabilities such as hiding files and ...
Reuters

Hackers update rootkit causing Windows blue screens

Hackers behind the rootkit responsible for crippling Windows machines after users installed a Microsoft security patch have updated their malware so that it no longer crashes systems, researchers ...
Bleeping Computer

North Korean hackers exploit Chrome zero-day to deploy rootkit

North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit. "We assess ...
Reuters

Rootkit with Blue Screen history now targets 64-bit Windows

A new version of the malware that crippled Windows PCs last February sidesteps safeguards designed to block rootkits from hijacking machines running 64-bit editions of Windows, researchers said ...
Ars Technica

Windows 0-day was exploited by North Korea to install advanced rootkit

You cannot rely on kernel access to fight kernel rootkits. You'll have to rely on a higher level entity that can vouch for the security of the levels below. So even CrowdStrike wouldn't be able to ...