New WINTAPIX Kernel Driver Targets Countries in The Middle East
New WINTAPIX Kernel Driver Targets Countries in The Middle East
23 May 2023
During their threat-hunting process in early February, Fortinet researchers encountered a kernel driver that used the Donut tool. The driver is called WinTapix.sys and is believed to be used in targeted attacks against countries in the Middle East.