Its new Windows 11 Microsoft έχουν πολλές δυνατότητες για την ασφάλεια, όπως τα Trusted Platform Module (TPM 2.0), Virtualization -based Security (VBS) και πολλά άλλα. Αν και υπήρχαν σαν προτάσεις στα Windows 10, δεν εφαρμόστηκαν ποτέ σε αντίθεση με τα Windows 11.
To demonstrate just how important the new features are, the company released a video starring Weston showing how potential hackers could get access on such vulnerable machines that do not have these capabilities.
The video below shows how hackers can gain control of a vulnerable device remotely or locally to infect the system with malicious payload such as ransomware or steal data control ID cardof the user.
The first part of the video shows the successful exploitation of a vulnerable open remote port (RDP) for administrator access and ransomware distribution on a Windows 10 system that did not have TPM 2.0 and Secure Boot enabled.
After that, Weston demonstrates a vulnerability that is exploited locally through the fingerprint authentication process on a computer without VBS. It was used PCILeech to access the vulnerable system's memory and modify the biometric authentication code.
Watch the video