Last news
Ukrainian Drones Strike Deeper Into Russian Supply Lines: Range Extended to 150 Kilometers today, 00:24
Steam Unveils Major June Events: Seasonal Sale with Discounts of Up to 90% yesterday, 18:48
Hybrid Cars Could Vanish Sooner Than Expected: A New Forecast Through 2030 yesterday, 18:30
UBTECH Opens Pre-Orders for Humanoid Robot, Entering the Consumer Market yesterday, 17:24
Lexus Unveils All-New ES 500e Electric Sedan: 338 HP and a 444 km Range yesterday, 16:36
Ukraine’s 'Sova' Armored Vehicle Achieves Top-Tier Protection: Key Details Revealed yesterday, 13:30
Charging to 100% Damages Your Phone Battery: Here’s the Ideal Range for Longevity yesterday, 13:24
New ADAC Analysis Shows It Pays to Turn Off Your Engine After Just 20 Seconds yesterday, 12:12
What Does the Green Dot on Android Mean and Can It Be Turned Off? yesterday, 07:18
4 Essential Router Features to Consider Before Buying a Wi-Fi Router yesterday, 04:36
Foldable Android phones last just two to three years—here’s why 05.06.2026
Unreliable Turbo Engines: The Most Troublesome Powerplants and How to Protect Them 05.06.2026
JD Power Reliability Rankings: BMW Leads While Audi and Mercedes Lag Behind 05.06.2026
Ukraine’s 'Barracuda' Drone Boat Transforms Into a Mini Aircraft Carrier—Here’s How Many FPV Drones It Carries 05.06.2026
Show more

Hackers Use ThrottleStop: How Intel Driver Opens the Door for Akira Virus.

08.08.2025 401
Shostal Oleksandr
Journalist Shostal Oleksandr
08.08.2025 401
Hackers Use ThrottleStop: How Intel Driver Opens the Door for Akira Virus
Hackers Use ThrottleStop: How Intel Driver Opens the Door for Akira Virus

Cybersecurity experts have discovered a new way to bypass Microsoft Defender's protection, allowing attackers to install the ransomware virus Akira. This scheme exploits a vulnerability in the legitimate driver rwdrv.sys, which is part of the ThrottleStop tool for Intel processors.

By leveraging this vulnerability, attackers can gain access to the operating system's kernel to load their malicious driver hlpdrv.sys. This driver alters the Windows registry and disables Microsoft Defender's protective features, paving the way for attacks. According to experts, this is how the Akira virus has been spreading recently, with a surge in infections beginning in July.

Specialists emphasize that even legitimate programs can contain dangerous drivers that become tools for potential attacks.

Experts found that hackers managed to bypass Microsoft Defender's protection by exploiting a vulnerability in the ThrottleStop driver for Intel processors. This allowed them to install the Akira ransomware and gain access to the system, circumventing security. Specialists stress the importance of continuously ensuring the security of computer systems and avoiding the use of dangerous drivers.


Read also
Read 112.ua in telegramtelegramm logo
Read 112.ua in googlegoogle logo
You may be interested
Ukrainian drones strike Russian logistics
Ukrainian Drones Strike Deeper Into Russian Supply Lines: Range Extended to 150 Kilometers
today, 00:24 332
Steam discounts up to 90%
Steam Unveils Major June Events: Seasonal Sale with Discounts of Up to 90%
yesterday, 18:48 384
Hybrid cars will disappear by 2030
Hybrid Cars Could Vanish Sooner Than Expected: A New Forecast Through 2030
yesterday, 18:30 401
UBTECH humanoid robot pre-order
UBTECH Opens Pre-Orders for Humanoid Robot, Entering the Consumer Market
yesterday, 17:24 430
New Lexus ES 500e electric car
Lexus Unveils All-New ES 500e Electric Sedan: 338 HP and a 444 km Range
yesterday, 16:36 398
Armored car Sova with enhanced protection
Ukraine’s 'Sova' Armored Vehicle Achieves Top-Tier Protection: Key Details Revealed
yesterday, 13:30 393

Advertising