|
Post by slowcomingwarbird on Dec 8, 2021 23:57:47 GMT
So why is it really dangerous when a hacker replaces your device drivers with corrupted versions modified with custom security flaws on a Windows s ystem?
Simply because device drivers have access to all of the memory and resources that the Windows Kernel has access to. That a hacked version of a device driver would not necessarily call the Kernel Bug Check API when a memory access violation occurred.
Memory access violations are dangerous because it could by used by a hacker to erase the Bios or even steal passwords or hijack a cloud session.
Not to say that the same thing could theoretically be exploited on a Linux or FreeBSD system but doing so would be much less likely or much more difficult for a hacker to implement.
So continuously updating your device drivers or firmware is not always a prudent choice because it could lead to the kinds of vulnerabilities that you thought you were trying to prevent in the first place. Up to and including a permanently "bricked" or dead computer.
It is generally always best to stick with the device drivers that came with your computer for those reasons.
|
|