Recently, a serious privilege escalation flaw was found by Microsoft researchers in the PCManager driver software of Huawei.
Besides, the arbitrary code execution vulnerabilities are also discovered.
To know more details about these flaws, you should read this page with care.
Recently, they discovered a severe localprivilege escalation flawin a Huawei tool PCManager driver software.
Click to see the ransomware prevention policy.
How these security bugs are found?
The Huawei PCManager driver software triggered the Defender ATP alerts on various devices that run Windows 10.
Because of that, Microsoft starts an investigation so you can find out.
Hunting led us to the kernel code that triggered the alert.
So why was this driver exhibiting unusual behavior?
To answer this question, we reverse-engineered HwOs2Ec10x64.sys.
This will result in a full machine compromise.
Microsoft adopts the popular trick process hollowing to testify the flaw.
In 2017, the WannaCry malware outbreak had a serious impact in the National Health Service of UK.
According to statics, about 200,000 Windows PCs all over the world are influenced.
This incident was finally determined to have been brought on by North Korean hackers.
Later, Microsoft uses sensors as its partial response to the malware attacks.
Definitely, you’ve got the option to.
Here are several solutions to help you recover files quickly and safely.
In fact, sensors have been applied to the Microsoft Defender ATP anti-malware.
