PLEASE BE AWARE ABOUT THE NEW NETFILTER DRIVER ROOTKITS!
This time hackers tricked Microsoft into signing a malicious Netfilter driver. On 25th Jun, Microsoft confirms that it had a driver signed by the Windows Hardware Compatibility Program (WHCP), which turned to be a malicious Windows rootkit. Please be aware of the new Netfilter driver rootkits.
* Primary Targets Of The New Netfilter Driver Rootkits:
* What Microsoft Says About The New ‘Netfilter Driver Rootkits’:
* IOCs To Detect The New ‘Netfilter Driver Rootkits’
* C2 IP addresses:
* Identified Files:
Table of Contents :