When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
This flaw, tracked as CVE-2024-21338, allowed them to gain kernel-level access to the gear.
They used it to disable any antivirus programs installed on the gadget, opening the doors for more disruptivemalware.
(Image Credit: TheDigitalArtist / Pixabay)
The flaw was found in the appid.sys driver, a component of Windows AppLocker that handles whitelisting.
Who are Lazarus Group?
This is also the only way to remain secure, so applying the patch without hesitation is advised.
Lazarus Group is one of the worlds most prominent, and infamous, cybercriminal organizations.
ViaBleepingComputer
