Chinese state hackers use rootkit to hide ToneShell malware activity

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.
Forbes

CrowdStrike—How Microsoft Will Protect 8.5 Million Windows Machines

Just over a week after the botched CrowdStrike update caused millions of Windows-based machines to crash, Microsoft has published its analysis of the outage. Just over a week after the botched ...
CSOonline

Microsoft shifts focus to kernel-level security after CrowdStrike incident

The CrowdStrike incident that affected more than 8.5 million Windows PCs worldwide and forced users to face the “Blue Screen of Death,” made Microsoft sit down and revisit the resilience of its ...