Melting Down PatchGuard: Leveraging KPTI to Bypass Kernel Patch Protection

cybersecurity, Windows, enSilo Breaking Malware, meltdown, KPTI, PatchGuard

The mitigation for Meltdown created a new part in the kernel which PatchGuard left unprotected, making hooking of system calls and interrupts possible, even with HVCI enabled.

Read More

Don't Have A Meltdown Over Spectre

enSilo Corporate and Product, meltdown, spectre

The world has been informed of Spectre and Meltdown.  Spectre and Meltdown are hardware flaws and/or vulnerabilities that allow an attacker to run unprivileged code to read from privileged memory.  Due to Spectre and Meltdown being hardware flaws there are alarms and red flags running wild.  Three things to consider to block malware from

Read More