You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
byovd protection
About this tag
BYOVD (Bring Your Own Vulnerable Driver) protection is a security measure that prevents attackers from exploiting legitimate but vulnerable kernel drivers to gain elevated system access. Microsoft has announced that starting with the April 2026 Windows security update, default trust for legacy cross-signed kernel drivers will be removed, closing a common BYOVD attack vector. Additionally, the Windows 11 KB5060999 cumulative update includes an expanded blocklist for vulnerable drivers, further hardening the operating system against such threats. These changes aim to force the driver ecosystem toward certification through the Windows Hardware Compatibility Program, reducing the risk of BYOVD attacks on modern and enterprise systems.
Microsoft is about to do something that sounds small on paper but could reshape a corner of Windows security that has lingered far too long in a grey zone. Beginning with the April 2026 Windows security update, the company will stop trusting legacy cross-signed kernel drivers by default and move...
Here are the official highlights and improvements from the June 10, 2025—KB5060999 (OS Builds 22621.5472 and 22631.5472) cumulative update for Windows 11 Enterprise and Education, version 22H2, and Windows 11 version 23H2 (all editions):
Highlights
This update addresses security issues for...