Attackers can downgrade Windows kernel components to bypass security features such as Driver Signature Enforcement and deploy rootkits on fully patched systems. This is possible by taking control of ...

Following the massive Windows outage in July caused by a defective CrowdStrike update, Microsoft is working on a way to allow security products to ‘run in user mode just as apps do,’ Microsoft’s David ...

While Microsoft is taking steps to provide an alternative way for endpoint security vendors to operate in Windows following the massive July outage, there are no signs this new option will become ...

Why it matters: The kernel space is the core component of a computer operating system, where critical hardware management and device driver code reside in memory. If a kernel-level driver malfunctions ...

There’s no talk of locking down the Windows kernel just yet, but Microsoft clearly wants to move endpoint security systems out of there. There’s no talk of locking down the Windows kernel just yet, ...

In the aftermath of the devastating CrowdStrike outage this July, Microsoft vowed to do better even though it insisted that the event was an aberration. Evidently unwilling to take chances (or risk ...

Microsoft is ready to test Windows changes to prevent another CrowdStrike incident. Microsoft is ready to test Windows changes to prevent another CrowdStrike incident. is a senior editor and author of ...

Forward-looking: The CrowdStrike incident has once again highlighted concerns about Windows security. Microsoft was adversely affected by the Texas company's poor update practices, but it prompted ...

Maybe giving security firms access to the Windows isn’t the best idea, but freezing them out could be worse. The massive worldwide Windows outage caused by a disastrous update from the security ...

Forbes contributors publish independent expert analyses and insights. Davey Winder is a veteran cybersecurity writer, hacker and analyst. Hot on the heels of the NSA publishing a “high-risk of ...

Microsoft is stepping up its plans to make Windows more resilient to buggy software after a botched CrowdStrike update took down millions of PCs and servers in a global IT outage. The tech giant has ...

Kernel level access was discussed at the Windows Endpoint Security Ecosystem Summit, a meeting between Microsoft, government officials and cybersecurity companies on Sept. 10. It’s been nearly two ...