New "Microsoft Vulnerable Driver Blocklist" feature in Windows Security


New Windows security option: Enable more aggressive blocklist which includes vulnerable drivers

The vulnerable driver blocklist is designed to help harden systems against third party-developed drivers across the Windows ecosystem with any of the following attributes:
  • Known security vulnerabilities that can be exploited by attackers to elevate privileges in the Windows kernel
  • Malicious behaviors (malware) or certificates used to sign malware
  • Behaviors that are not malicious but circumvent the Windows Security Model and can be exploited by attackers to elevate privileges in the Windows kernel
FO5DiJSUcAEvjDZ.png
Click to expand...

Read more:
docs.microsoft.com

Microsoft recommended driver block rules

View a list of recommended block rules to block vulnerable third-party drivers discovered by Microsoft and the security research community.
docs.microsoft.com

https://twitter.com/x/status/1508217367259611142
 
Click to expand...
You must log in or register to reply here.

Similar threads

Vulnerable Driver BlockList
Replies
2
Views
1K
Rollback_Jockey
Rollback_Jockey
Solved 24H2 Vulnerable Driver Blocklist detecting driver AsIO.sys in Windows after login
2 3
Replies
49
Views
37K
antspants
antspants
Solved Microsoft Vulnerable Driver Blocklist
Replies
3
Views
2K
Haydon
Haydon
  • Article Article
Privacy and Security Enable or Disable Microsoft Vulnerable Driver Blocklist in Windows 11
Replies
13
Views
156K
garlin
G
  • Article Article
New security features for Windows 11 will help protect hybrid work
Replies
2
Views
1K
magilla
magilla

Latest Support Threads

Latest Tutorials

Back
Top Bottom