Ransomware gang caught using Microsoft-approved drivers to hack targets

, By Team SNFYI
General

Share via:

Security researchers say they have evidence that threat actors affiliated with the Cuba ransomware gang used malicious hardware drivers certified by Microsoft during a recent attempted ransomware attack.

Drivers — software that enables operating systems and apps to access and communicate with hardware devices — require highly privileged access to the operating system and its data, which is why Windows requires drivers to bear an approved cryptographic signature before they can be loaded. Cybercriminals have long exploited these drivers, frequently employing a “bring your own vulnerable driver” strategy in which hackers exploit vulnerabilities discovered within an existing Windows driver from a legitimate software publisher.

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Previous News
BIS to collaborate with stakeholders to self-regulate ecommerce
Next News
Dubai’s Letswork raised $2.1 million in SEED from 500 Global and others
Team SNFYI
Team SNFYI

Popular

More Like this

Load more

Ransomware gang caught using Microsoft-approved drivers to hack targets

, By Team SNFYI
General

Security researchers say they have evidence that threat actors affiliated with the Cuba ransomware gang used malicious hardware drivers certified by Microsoft during a recent attempted ransomware attack.

Drivers — software that enables operating systems and apps to access and communicate with hardware devices — require highly privileged access to the operating system and its data, which is why Windows requires drivers to bear an approved cryptographic signature before they can be loaded. Cybercriminals have long exploited these drivers, frequently employing a “bring your own vulnerable driver” strategy in which hackers exploit vulnerabilities discovered within an existing Windows driver from a legitimate software publisher.

Disclaimer

We strive to uphold the highest ethical standards in all of our reporting and coverage. We StartupNews.fyi want to be transparent with our readers about any potential conflicts of interest that may arise in our work. It’s possible that some of the investors we feature may have connections to other businesses, including competitors or companies we write about. However, we want to assure our readers that this will not have any impact on the integrity or impartiality of our reporting. We are committed to delivering accurate, unbiased news and information to our audience, and we will continue to uphold our ethics and principles in all of our work. Thank you for your trust and support.

Website Upgradation is going on for any glitch kindly connect at office@startupnews.fyi

Previous News
BIS to collaborate with stakeholders to self-regulate ecommerce
Next News
Dubai’s Letswork raised $2.1 million in SEED from 500 Global and others
Team SNFYI
Team SNFYI

More like this

bob: Revolutionizing Mobility Aggregation in India

Business admin -
Bangalore (Karnataka) , January 02: Aiming to transform...

Troikaa Pharma Launches World’s First Zolpidem Sublingual Spray, Zolswift-SL,...

HealthTech admin -
Ahmedabad (Gujarat) , November 27: Troikaa Pharma announced...

IPO-Bound OfBusiness Launches AI Platform Nexizo

FinTech admin -
SUMMARY OfBusiness’ new SaaS platform allows SMEs to find...
Load more

Popular

Upcoming Events

View all
Event Updates

Startup Information that matters. Get in your inbox Daily!

Subscribe

StartupNews.fyi

StartupNews.fyi is India's leading news & Technology media company that focuses on Startups in India and to stories across the globe.
Subscribe

© 2025 StartupNews.fyi | DOTFYI Media Ventures Private Limited. All Rights Reserved.

StartupNews.fyi

StartupNews.fyi is India's leading news & Technology media company that focuses on Startups in India and to stories across the globe.

© 2025 StartupNews.fyi | DOTFYI Media Ventures Private Limited. All Rights Reserved.