CSOonline

CrowdStrike defends access to Windows kernel at US Congressional hearing into July worldwide update failure

A CrowdStrike executive told a US Congressional hearing on Tuesday that the company’s endpoint detection and response sensor has to continue accessing the Windows kernel, despite criticism by some ...
Linux Journal

Inside the Linux Kernel Runtime Guard (LKRG): A New Layer of Kernel Integrity Protection

LKRG (short for Linux Kernel Runtime Guard) is a loadable kernel module that continuously monitors the health and integrity of the Linux kernel while it’s running. Unlike many security features that ...
Bleeping Computer

New Windows Driver Signature bypass allows kernel rootkit installs

Attackers can downgrade Windows kernel components to bypass security features such as Driver Signature Enforcement and deploy rootkits on fully patched systems. This is possible by taking control of ...
CSOonline

Microsoft shifts focus to kernel-level security after CrowdStrike incident

The CrowdStrike incident that affected more than 8.5 million Windows PCs worldwide and forced users to face the “Blue Screen of Death,” made Microsoft sit down and revisit the resilience of its ...