Jun 28, 2021
46 Views
Comments Off on A driver containing rootkit malware was certified by Microsoft
0 0

A driver containing rootkit malware was certified by Microsoft

Written by



Microsoft tests drivers before assigning them a digital certificate that approves them to be installed by default. Somehow, a driver called Netfilter that redirects traffic to an IP in China and installs a root certificate to the registry managed to make it through that testing without being detected as malware.

Karsten Hahn, a malware analyst at G Data, found the malicious driver and notified Microsoft, “who promptly added malware signatures to Windows Defender and are now conducting an internal investigation.” Microsoft also suspended the account that submitted the driver, and is currently going over their previous submissions.



Continue reading at PCGamer…

Article Tags:
Article Categories:
News

Comments are closed.