Techly NewsGet the app

Get the latest tech news

Your Windows Updates Can All Be Downgraded, Says Security Researcher


Security researchers from SafeBreach have found what they say is a Windows downgrade attack that's invisible, persistent, irreversible and maybe even more dangerous than last year's BlackLotus UEFI bootkit. From a report: After seeing the damage that UEFI bootkit could do by bypassing secure boot p...

Security researchers from SafeBreach have found what they say is a Windows downgrade attack that's invisible, persistent, irreversible and maybe even more dangerous than last year's BlackLotus UEFI bootkit. Using his technique, having compromised a machine so that he could get in as a normal user, Leviev was able to control which files get updated, which registry keys are changed, which installers get used, and the like. To make matters worse, Leviev said that poking and prodding around the vulnerabilities he found enabled him to attack the entire Windows virtualization stack, including virtualization-based security (VBS) features that are supposed to isolate the kernel and make attacker access less valuable.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of Security researcher

Security researcher

Photo of Windows updates

Windows updates

Related news:

News photo

Your Windows updates can all be downgraded, says security researcher

News photo

Microsoft is changing how it delivers Windows updates: 4 things you need to know

News photo

Microsoft introduces a new form of Windows updates because things weren’t confusing enough

« What Google's antitrust loss means for you and the future of search
Solidigm 122 TB Enterprise QLC SSD Announced for Early 2025 Release »