Safeguarding Digital Freedom: How a Gen Discovery Helped to Protect Windows Users Everywhere
Contents
Safeguarding Digital Freedom: How a Gen Discovery Helped to Protect Windows Users Everywhere
Gen Threat Labs recently uncovered and reported a major security flaw known as a zero-day vulnerability (CVE-2024-38193), which Microsoft has now fixed. This repair is important because it addresses a security issue that was being used by the Lazarus APT group, a North Korean hacker group known for targeting specific professionals.
What we found
In early June, Luigino Camastra and Milanek discovered that the Lazarus group was exploiting a hidden security flaw in a crucial part of Windows called the AFD.sys driver. This flaw allowed them to gain unauthorized access to sensitive system areas. We also discovered that they used a special type of malware called Fudmodule to hide their activities from security software.
Why it’s important
The vulnerability allowed attackers to bypass normal security restrictions and access sensitive system areas that most users and administrators can't reach. This type of attack …
Gen Threat Labs recently uncovered and reported a major security flaw known as a zero-day vulnerability (CVE-2024-38193), which Microsoft has now fixed. This repair is important because it addresses a security issue that was being used by the Lazarus APT group, a North Korean hacker group known for targeting specific professionals.
What we found
In early June, Luigino Camastra and Milanek discovered that the Lazarus group was exploiting a hidden security flaw in a crucial part of Windows called the AFD.sys driver. This flaw allowed them to gain unauthorized access to sensitive system areas. We also discovered that they used a special type of malware called Fudmodule to hide their activities from security software.
Why it’s important
The vulnerability allowed attackers to bypass normal security restrictions and access sensitive system areas that most users and administrators can't reach. This type of attack …