Wi-Fi Driver Archives

Winsage

December 18, 2024

Intel driver 23.100.0 adds improved Wi-Fi sensing to Windows 11 / Windows 10

Windows 11 and Windows 10 users can benefit from Intel's driver update version 23.100.0, which enhances Wi-Fi connectivity and improves the detection of Wi-Fi networks, particularly on Windows 11 devices like the Spectre. The update includes a new refresh button for Windows 11 24H2 users, although it does not significantly speed up detection. Windows 10 users do not have this refresh option. The update also optimizes Intel adapters for better performance with Wi-Fi 6 technology and includes various security enhancements. Users can obtain the update through Windows Update or the Driver and Support Assistant tool. Additionally, Microsoft has warned of potential BSOD issues for Windows 11 24H2 users with outdated audio drivers, advising the use of the latest drivers for improved performance.

Tech Optimizer

October 14, 2024

Windows users are being tricked by sneaky malware scheme – CyberGuy

Hackers are targeting Windows users with a new strain of malware called Lumma Stealer, which spreads through deceptive human verification pages that mimic Google CAPTCHA. These phishing sites, often hosted on various platforms using Content Delivery Networks (CDNs), trick users into clicking a button that copies a PowerShell script to their clipboard. When executed, this script downloads Lumma Stealer from a remote server. The malware is packaged as a file named “dengo.zip,” which must be unzipped and run on the user's machine to become active. Researchers from Cloudsek have identified an increase in malicious sites using this method. To protect against such threats, it is recommended to keep Windows and antivirus software updated, avoid clicking on suspicious links, and refrain from executing unknown commands.

Winsage

September 5, 2024

Critical remote code execution vulnerability discovered in Microsoft Windows Wi-Fi drivers

A critical remote code execution (RCE) vulnerability, designated as CVE-2024-30078, has been identified in the Wi-Fi drivers of various Microsoft Windows versions, affecting over 1.6 billion active devices globally. This vulnerability is present in Windows 10, Windows 11, and several Windows Server versions, specifically within the Dot11Translate80211ToEthernetNdisPacket() function of the native Wi-Fi driver (nwifi.sys). It has been actively exploited in regions like the United States, China, and parts of Europe, posing risks to industries reliant on Wi-Fi networks and Windows infrastructure. The vulnerability allows attackers to send specially crafted network packets to gain unauthorized access without requiring advanced techniques or user interaction. The root cause is a flaw in the Link Layer Control (LLC) component of the network stack related to packet length management when using Virtual LAN (VLAN), leading to potential out-of-bounds reads and arbitrary code execution. Successful exploitation can result in malware installation, lateral movement within networks, botnet recruitment, and data exfiltration. Microsoft released a security patch in June 2024 to address this vulnerability. Recommended mitigation strategies include timely patch application, implementing WPA3, using strong passwords, network segmentation, deploying intrusion detection and prevention systems, conducting regular security audits, user education on cybersecurity best practices, and adopting a zero-trust security model.

Winsage

June 28, 2024

Windows: Insecure by design

In June 2023, Chinese hacking group Storm-0558 stole US government "secure" messages from Microsoft's Exchange Online.

Tech Optimizer

June 28, 2024

Fake software fixes fuel money-stealing malware threat – CyberGuy

The fake update malware poses as fake Google Chrome, Word, and OneDrive errors to coerce users into downloading harmful code by copying and pasting a PowerShell "fix" into their system.

Winsage

June 25, 2024

This Windows 11 Wi-Fi vulnerability shows the importance of keeping your PC up to date

CVE-2024-30078 is a vulnerability in the Windows Wi-Fi driver that allows an attacker to execute arbitrary code remotely on a target system.

Winsage

June 20, 2024

Update your Windows PC now to fix a serious Wi-Fi security flaw

Microsoft has released a critical Windows update to patch a serious Wi-Fi vulnerability, identified as CVE-2024-30078, that could potentially compromise device security. The vulnerability allows attackers to exploit a Wi-Fi driver remote code execution hole, leading to unauthorized access and the ability to run commands on affected devices. The update was released on 11 June, and it is crucial to install it promptly to safeguard devices.

Winsage

June 17, 2024

Windows Wi-Fi Code Execution Flaw Let Attacker Hijack Your Devices

The vulnerability patched by Microsoft in June 2024's Patch Tuesday, CVE-2024-30078, poses a high severity risk of 8.8 and allows for remote code execution in the Wi-Fi Driver without requiring user interaction.