New Windows Privilege Escalation Zero Day Haunts
A new Windows zero-day elevation of privilege vulnerability emerged with a public proof of concept (PoC) exploit that grants SYSTEM privileges under certain conditions. The only safe point as of…
Microsoft Working on Update Stacks to ease Patching
Microsoft testing a feature called Update Stack Packages via the Windows Insider Program. The company says this feature is supposed to improve the Windows update process.The Update Stack Package will…
Mystery Snail 🐌 Exploited in Wild
Chinese hackers have attacking using a zero-day elevation-of-privilege exploit. An APT group exploited a zero-day vulnerability in the Windows Win32k kernel driver to develop a new RAT trojan. This exploit…
Microsoft Patch Tuesday October 2021
Microsoft patched 74 CVEs in the October 2021 Patch Tuesday release, including three rated as critical, 70 rated as important and one rated as low. The zero-day bugs are tracked…
Windows Patching – Study Reveals it as Headache
It’s a known fact that many attacks takes place due to a presence of vulnerabilities and exploits persists in the software that has not been updated, but the covid nightmare…
FinFisher hits Windows with UEFI Rootkit
FinFisher commercially developed for surveillance has been upgraded to infect Windows devices using a UEFI bootkit using a trojanized Windows Boot Manager. FinFisher is a spyware toolset for Windows, macOS,…
Network Printing take a hit after Print Nightmare patch
Microsoft's most recent Patch release may have resolved the final remains of the PrintNightmare vulnerabilities, but it have impacted users ability to access network printer resources. The vulnerability, identified in…
Vermilion Cobalt Strike
Security researchers have identified a reimplementation of the infamous Cobalt Strike Beacon payload, which features completely new code. Dubbed Vermilion Strike, the malware can be used to target Linux and Windows devices…