Overview

Microsoft completed its investigation regarding the Microsoft Windows Hardware Developer Program-certified drivers that were being used maliciously in post-exploitation activity. The investigation, which was launched in late October of 2022, determined that the activity was limited in nature and no compromise was identified. To protect customers from the threat, Microsoft released Windows Security Updates to revoke the certificate for impacted files, suspended the partners’ seller accounts, and deployed blocking detections (Microsoft Defender 1.377.987.0 and newer).


Source

https://msrc.microsoft.com/update-guide/vulnerability/ADV220005