security-boundary

2 posts tagged security-boundary.

Windows Downdate: When the Update Itself Is the Attack

May 22, 2026

How Alon Leviev turned Windows Update into a downgrade primitive, rolling fully-patched Windows 11 back to vulnerable VBS components while every signature still verified.
Protected Process Light: When the Administrator Isn't Enough

May 11, 2026

How a single byte in EPROCESS encodes a signer lattice that denies SYSTEM-integrity admins the right to read LSASS -- and why every public bypass since 2018 attacks the same structural seam.