CSO Online

Attackers exploit decade‑old Windows driver flaw to shut down modern EDR defenses

Attackers abused a signed but long-revoked EnCase Windows kernel driver in a BYOVD attack to terminate all security tools.

EDR killer tool uses signed kernel driver from forensic software

Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in ...
Dark Reading

Microsoft Talks Kernel Drivers Post CrowdStrike Outage

Microsoft has released more details around its assessment of the CrowdStrike Falcon outage nearly two weeks ago, noting that one takeaway is the need to reduce infosec vendors' reliance on the kernel ...
Neowin

HWiNFO fixes Windows 11 legacy CPU usage reading, kernel hardware stack driver issue0 0

HWiNFO is one of the best free hardware monitoring tools. The latest version of the software has fixed legacy CPU usage reading on Windows 11, a kernel-mode hardware stack driver bug, and more. HWiNFO ...

Windows 11 adds a new secure mode that blocks sketchy apps and drivers

Windows 11 is adding Baseline Security Mode to block unsigned apps, services, and drivers by default, plus new consent prompts for sensitive access and bundled installs, with exceptions when needed ...
TWCN Tech News

Fix Kernel Mode Heap Corruption BSOD on Windows 11/10

If you are receiving a KERNEL_MODE_HEAP_CORRUPTION Blue Screen on Windows 11/10, then this post will help you resolve it. One of the primary reasons for this error is ...