Microsoft's new Windows 11 has many security features, such as Trusted Platform Module (TPM 2.0), Virtualization-based Security (VBS) and more. Although they existed as suggestions in Windows 10, they were never implemented in contrast to Windows 11.
To demonstrate how important the new features are, the company has unveiled a video starring Weston, which shows how potential hackers could gain access to such vulnerable machines that do not have these features.
The video below shows how hackers can gain control of a vulnerability devices remotely or locally to infect the system with malicious payload such as ransomware or steal data control ID cardof the user.
The first part of the video shows the successful exploitation of an open Remote Desktop Port (RDP) vulnerability to gain administrator access and distribute ransomware on a Windows 10 system that did not have TPM 2.0 enabled and Secure Boot.
After that, Weston demonstrates a vulnerability that he exploits locally through her procedureof fingerprint authentication on a computer without VBS. PCILeech was used to access the vulnerable system's memory and modify the biometric authentication code.
Watch the video