""Essentially, Microsoft is closing a 20-year-old critical security hole in its OS. Device drivers get to touch the OS kernel and can abuse that supreme-level access to do fun things like disable anti-virus and endpoint monitoring tools.""
""The program was administered by third parties who stored private keys associated with the certificates, which, Microsoft says, led to abuse and credential theft that put our customers and their platforms at risk.""
Beginning in April 2026, Microsoft will block kernel drivers not vetted through its Windows Hardware Compatibility Program, targeting those signed by a defunct cross-signed root program. This policy aims to close a significant security vulnerability but may affect legacy applications. Initially, the rollout will be in evaluation mode, allowing some exceptions for reputable older drivers. Microsoft acknowledges the balance between security and compatibility, providing administrators the option to override the policy in specific cases.
Read at Computerworld
Unable to calculate read time
Collection
[
|
...
]