Eclypsium has announced alarming security holes in the latest drivers provided by well-known computer companies. All major BIOS vendors were on the list – including AMD, Intel, Nvidia, ASRock, ASUSTeK Computer, EVGA, Biostar, GIGABYTE, MSI, Realtek Semiconductor and many more. In total, controllers from about 20 entities pose a potential threat.
“The biggest worry for both users of devices with sluggish drivers and the companies themselves distributing hardware should be the fact that the problem concerns drivers of well-known manufacturers that have been certified, among others, by Microsoft.”, Reads the report. How come drivers with serious vulnerabilities underwent the certification process? This is not known.
All drivers are able to grant cybercriminals rights on the Ring 0 level, while a regular user has the Ring 3 rights by default. This allows a person who wants to cause damage to get full access to the firmware, hardware interface and of course the operating system itself.
At the moment, there is no way to avoid the dangerous drivers available on all modern editions of Windows. For consolation: the report reads that the cybercriminal must somehow gain remote access to computer resources in order to take advantage of the vulnerabilities. To minimize the danger, remember to regularly scan your system for threats.