Delivering vulnerable signed kernel drivers remains popular among attackers
Vulnerabilities in signed drivers are mostly utilized by game cheat developers to circumvent anti-cheat mechanisms, but they have also been observed being used by APT groups and in commodity malware.