NSA-Inspired Vulnerability Found in Huawei Laptops
This is an interesting story of a serious vulnerability in a Huawei driver that Microsoft found. The vulnerability is similar in style to the NSA’s DOUBLEPULSAR that was leaked by the Shadow Brokers—believed to be the Russian government—and it’s obvious that this attack copied that technique.
What is less clear is whether the vulnerability—which has been fixed—was put into the Huawei driver accidentally or on purpose.
sle • March 29, 2019 8:55 AM
I have another set of questions.
This vulnerability was discovered thank to Microsoft ATP, which uses specific monitorings inside windows kernel.
Can any other vendor perform the same? Or is the Kernel locked to Microsoft?
If locked, from a security standpoint is it better (only Microsoft can alter the kernel with caution and serious security process and review) or worse (in this field the innovation is reduced to Microsoft goodwill and ideas)?