Paragon Partition Manager flaw exploited in ransomware attacks: A critical vulnerability launched

Paragon Partition Manager, a popular system partition manager, has recently been found to have five vulnerabilities that could potentially expose systems to malware. These vulnerabilities were discovered by Microsoft researchers and affect the BioNTdrv.sys driver. The researchers have confirmed that at least one of these vulnerabilities is actively being exploited by ransomware groups.

If these vulnerabilities are exploited, attackers can gain administrative permissions on the system, allowing them to carry out malicious activities and install malware. The flaws enable attackers to execute commands with administrative privileges, bypassing the system’s implemented protection measures. What’s more, since the driver is signed by Microsoft in Windows, attackers can exploit these vulnerabilities even if the Paragon Partition Manager is not installed on the system.

Microsoft believes that at least one of these vulnerabilities is actively being used by ransomware groups to install malware and carry out their malicious activities. The company has worked directly with Paragon Software to address the issue, and a fix has been released. Additionally, Microsoft has blocked the old version of the driver to prevent it from being executed on Windows and exploited for attacks.

Considering that the vulnerability can be exploited even by those who do not have Paragon Partition Manager installed, it is highly recommended to keep Windows updated with the latest version available. Users should also ensure that they have enabled the setting to prevent the loading of insecure drivers. For those who do have Paragon Partition Manager, it is crucial to update to the latest version of the software, as they may be at a higher risk of direct attacks using the driver.

It’s important to stay vigilant and take necessary precautions to protect our systems from potential vulnerabilities. Keeping software up to date and following best security practices can go a long way in safeguarding against potential threats.

Background Information

---

About Microsoft:

Microsoft, founded by Bill Gates and Paul Allen in 1975 in Redmond, Washington, USA, is a technology giant known for its wide range of software products, including the Windows operating system, Office productivity suite, and cloud services like Azure. Microsoft also manufactures hardware, such as the Surface line of laptops and tablets, Xbox gaming consoles, and accessories.

  

Latest Articles about Microsoft