Post by slowcomingwarbird on Dec 8, 2021 23:57:47 GMT
So why is it really dangerous when a hacker replaces your device drivers with corrupted versions
modified with custom security flaws on a Windows s
ystem?
Simply because device drivers have access to all of the memory and resources
that the Windows Kernel has access to. That a hacked version of a device driver
would not necessarily call the Kernel Bug Check API when a memory access violation occurred.
Memory access violations are dangerous because it could by used by a hacker to erase the Bios
or even steal passwords or hijack a cloud session.
Not to say that the same thing could theoretically be exploited on a Linux or FreeBSD system
but doing so would be much less likely or much more difficult for a hacker to implement.
So continuously updating your device drivers or firmware is not always a prudent choice because it
could lead to the kinds of vulnerabilities that you thought you were trying to prevent in the first place.
Up to and including a permanently "bricked" or dead computer.
It is generally always best to stick with the device drivers that came with your computer for those reasons.
modified with custom security flaws on a Windows s
ystem?
Simply because device drivers have access to all of the memory and resources
that the Windows Kernel has access to. That a hacked version of a device driver
would not necessarily call the Kernel Bug Check API when a memory access violation occurred.
Memory access violations are dangerous because it could by used by a hacker to erase the Bios
or even steal passwords or hijack a cloud session.
Not to say that the same thing could theoretically be exploited on a Linux or FreeBSD system
but doing so would be much less likely or much more difficult for a hacker to implement.
So continuously updating your device drivers or firmware is not always a prudent choice because it
could lead to the kinds of vulnerabilities that you thought you were trying to prevent in the first place.
Up to and including a permanently "bricked" or dead computer.
It is generally always best to stick with the device drivers that came with your computer for those reasons.