A new review made by Ars Technique shows that Microsoft’s malicious driver block list for Windows hasn’t been updated properly since 2019.
During the period, several Windows updates were supposed to be released that Microsoft itself claimed to block new malicious drivers, but they didn’t. All of this was also noticed and tested by analyst Will Dormann of the security company Analygence
Why some malicious drivers were never added to the block list is unknown, but it means that millions of Windows computers are vulnerable to so-called byovd attacks (bring your driver vulnerable) for a long time.
“The list of vulnerable drivers is updated regularly, but we have received reports of a gap in the synchronization between the versions of the operating system. We have fixed this problem and will be addressed in the next and future updates of Windows,” Microsoft writes in a comment.
Read also: The new Chinese attack framework threatens Windows, Linux and Mac OS
