Microsoft signed a dodgy driver and now ransomware scum are exploiting it

Ransomware crooks are exploiting a third-party Windows kernel-level driver used and provided by disk management tool Paragon ...
Benzinga.com

Microsoft Adds Paragon Partition Manager Driver To Blocklist As Ransomware Hackers Exploit Windows-Signed Driver For Attacks

Ransomware operators have found a way to exploit a Microsoft Windows-signed driver from Paragon Partition Manager, posing a threat to system security. This allows attackers to deploy the driver with ...
Infosecurity-magazine.com

HotPage Malware Hijacks Browsers With Signed Microsoft Driver

Researchers have uncovered a new form of malware called HotPage.exe. Initially detected at the end of 2023, this malware masquerades as an installer that ostensibly improves web browsing by blocking ...