Arkwood Pond Social
  • FAQ
  • Login
Show Navigation
  • Public

    • Public
    • Groups
    • Recent tags
    • Popular
    • People

Conversation

Notices

  1. GeniusMusing (geniusmusing)'s status on Wednesday, 09-Mar-2022 22:07:18 UTC GeniusMusing GeniusMusing
    Remote profile options...
    Stolen Nvidia Certificates Used To Hide Malware in Driver Downloads Slashdot
    https://nu.federati.net/url/285263

    >Last week Nvidia confirmed that it had been the victim of an internal hack, though it claimed no customer information was compromised. Now we're seeing one of the first effects of the hack on end-users: Nvidia GPU driver packages with malware hidden inside. PCWorld:
    >While it was always possible for malefactors to host links pretending to be drivers in the hopes of installing viruses, trojans, and other nasty stuff on a user's PC, this situation is more concerning. The hackers appear to have leaked Nvidia's official code signing certificates, a means by which users (and Microsoft) can verify that a downloaded program comes from the publisher it says it's from. That's allowing files containing a host of popular malware suites to be posted and downloaded, bypassing Windows Defender's built-in executable verification and slipping past anti-virus software. BleepingComputer reports that two now-expired (but still usable) verification codes have been compromised and used to deliver remote access trojans. Another example, using the Nvidia verification to sign a fake Windows driver, was also spotted.

    Stolen Nvidia certificates used to hide malware in driver downloads PCWorld
    https://nu.federati.net/url/285264

    Kind of glad I have AMD video now...
    Wednesday, 09-Mar-2022 22:07:18 UTC from nu.federati.net permalink
    • LinuxWalt (@lnxw48a1) {3EB165E0-5BB1-45D2-9E7D-93B31821F864} repeated this.
  • Help
  • About
  • FAQ
  • TOS
  • Privacy
  • Source
  • Version
  • Contact

Arkwood Pond Social is a social network, courtesy of McCullaugh.com Network. It runs on GNU social, version 1.2.0-beta4, available under the GNU Affero General Public License.

Creative Commons Attribution 3.0 All Arkwood Pond Social content and data are available under the Creative Commons Attribution 3.0 license.

Switch to desktop site layout.