In recent weeks, attackers have leveraged workarounds that let them sign malicious kernel drivers, dealing a multi-pronged threat to Windows systems, the Windows Hardware Quality Lab testing integrity, as well as endpoint defenses specifically designed to mitigate these kinds of threats. This emerging threat underscores how attackers continue to develop techniques to gain persistence on targeted systems, whether through signed binaries and rootkits or though simpler means when defenders make mistakes, says Jamz Yaneza, senior threat research manager at Trend Micro.

Source: Dark Reading: Cloud