Ransomware protection Windows 10 turned out to be unreliable


Cybersecurity specialist Soya Aoyama has identified a serious ransomware vulnerability in the protection system Windows 10 that endangers the safety of user data. Aoyama spoke about his find at the DerbyCon conference.

The Controlled Folder Access technology built into the OS is designed to block the access of virus software to important files. Bypassing it, as Aoyama found out, is possible by injecting a malicious DLL into Explorer, a trusted application that the system does not impose restrictions on. To take advantage of this flaw, you just need to specify the required library in one of the registry keys.

Neither the stock Windows Defender nor third-party antiviruses could stop the ransomware virus that got on the PC in this way.

Rate article
Information portal NTN24enlaweb.com - Ratings and reviews of goods.
Add a comment