A vulnerable driver (NSecKrnl.sys) was used by Storm-2603 as a conduit to tamper with endpoint security protections and reduce visibility.
A vulnerable driver (NSecKrnl.sys) was used by Storm-2603 as a conduit to tamper with endpoint security protections and reduce visibility.