"What is GhostHook? New technique allows hackers to bypass Windows 10 PatchGuard"

Security experts at CyberArk have discovered a new attack technique, called GhostHook, which could allow hackers to evade kernel protections of Windows 10 PatchGaurd and plant rootkits within systems. According to researchers, this technique is only performable on systems running Intel Processor Trace (PT) and that are already comprised by attackers. This article further discusses the details of this attack, Microsoft’s response, how security experts think this type of attack is already being used, and its potential impacts. 

IBT UK reports "What is GhostHook? New technique allows hackers to bypass Windows 10 PatchGuard"