Posted 3/2/2024, 3:09:08 PM
Microsoft patches high-severity Windows kernel bug exploited by Lazarus hackers
- Microsoft patched high-severity Windows Kernel bug (CVE-2024-21338) in February that was being exploited as zero-day since August 2023
- Flaw impacts Windows 10, Windows 11, Windows Server 2019 and 2022; allows local privilege escalation to SYSTEM
- Avast links exploits to Lazarus hackers using vulnerability to turn off security tools and avoid detection
- New FudModule rootkit version utilizes kernel access to enhance stealth and functionality, disable security tools
- Avast discovered new Lazarus remote access trojan (RAT); will present findings at BlackHat Asia 2024 in April