Hackers Can Weaponize Lenovo Driver to Terminate EDR Processes

Hackers can weaponize a legitimately signed Lenovo driver to terminate security processes, highlighting a dangerous Bring Your Own Vulnerable Driver (BYOVD) attack vector that can bypass endpoint protection controls. Security researcher Jehad Abudagga has analyzed a Lenovo driver, BootRepair.sys, originally associated with the Lenovo PC Manager utility, and discovered that it can be abused to kill […] The post Hackers Can Weaponize Lenovo Driver to Terminate EDR Processes appeared first on Cyber Security News.