Drivers Signed By Microsoft Developers Accounts Used In Cyberattacks
Microsoft, Mandiant, Sophos, and SentinelOne have shared information about the campaign with threat actors utilizing malicious kernel-mode hardware drivers signed by Microsoft's Hardware Developer accounts. In response to the news, several accounts have already been revoked. The aim of the attacks is to gain administrative privileges on infected devices using malicious drivers. Read more...