Microsoft signed a dodgy driver and now ransomware scum are exploiting it
Paragon Software has released a new driver, BioNTdrv.sys version 2.0.0, which fixes these flaws. Vulnerable versions of the driver have been added to Microsoft's Vulnerable Driver Blocklist so that ...
Infosecurity-magazine.com20 天
BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager
This can allow attackers to execute arbitrary code on the victim’s machine CVE-2025-0285: An arbitrary kernel memory mapping vulnerability in version 7.9.1 caused by failure to validate user-supplied ...
来自MSN20 天
Microsoft discovers five potentially damaging attacks against its own software
Microsoft patches Paragon Partition Manager, after finding five flaws in a kernel-level driver One of the flaws was being actively used to drop ransomware The driver can be abused even without the ...
heise online20 天
Security leak in Paragon Partition Manager driver is being abused
Even if the Paragon software is not installed, they can simply bring the driver with them to compromise a machine, also known as Bring Your Own Vulnerable Driver (BYOVD). And this is exactly what ...
Bleeping Computer22 天
Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks
it's important to note that even users who don't have Paragon Partition Manager installed are not safe from attacks. BYOVD tactics don't rely on the software being present on the target's machine.