While Microsoft has been struggling for a long time to update outdated drivers and protect old devices, it has been unsuccessful for the past three years.
Our computers have been around for a very long time. an important part of life and naturally it can be a frequent target of malicious people. Microsoft’s outdated drivers Therefore, the drivers in the list can create important vulnerabilities.
Although Microsoft every update new security measures Although it is working to get for three years It is claimed that his work is not sufficient. Legacy drivers continue to have vulnerabilities against certain types of attacks.
Outdated drivers targeted by malicious people
outdated drivers or no longer supported software of hardware BYOVD It was stated that it made devices open targets for attacks of the kind called Driver files, which are necessary for the operation of external parts on our computers, can pose a great risk because they can directly access the operating system.
Microsoft normally all drivers be digitally signed wants. Thus, it aims to ensure that the drivers are completely safe to use. On the other hand, if a digitally signed driver is open, malicious people can directly access Windows.
Hypervisor-protected code integrity (HVCI Using a system called hypervisor-protected code integrity, Microsoft says this feature is turned on by standard on all devices. HVCI makes sure you have the right drivers. Unfortunately, this feature does not work as intended. Drivers can be installed even if they are blacklisted. That this list since 2019 not updating.
Microsoft On the other hand, he says that they are on the way to solve this problem with their recent statements. It is also possible to manually update the driver list, and the documentation is also updated. For now, there is no other explanation on the subject.
Source :
https://www.theverge.com/2022/10/16/23405739/microsoft-out-of-date-driver-list-windows-pcs-malware-attacks-years-byovd