diff --git a/scripts/debian/falco.service b/scripts/debian/falco.service
index 35ae6ba8..d86401b0 100644
--- a/scripts/debian/falco.service
+++ b/scripts/debian/falco.service
@@ -17,6 +17,7 @@ NoNewPrivileges=yes
 ProtectHome=read-only
 ProtectSystem=full
 ProtectKernelTunables=true
+ReadWritePaths=/sys/module
 RestrictRealtime=true
 RestrictAddressFamilies=~AF_PACKET
 
diff --git a/scripts/rpm/falco.service b/scripts/rpm/falco.service
index ede6c2e3..29894e41 100644
--- a/scripts/rpm/falco.service
+++ b/scripts/rpm/falco.service
@@ -17,6 +17,7 @@ NoNewPrivileges=yes
 ProtectHome=read-only
 ProtectSystem=full
 ProtectKernelTunables=true
+ReadWritePaths=/sys/module
 RestrictRealtime=true
 RestrictAddressFamilies=~AF_PACKET
 StandardOutput=null