Skip to content

WindowsTechs.com

Collaborate Disseminate

Search for:

Primary menu

Home

Author Archives: Michael Mimoso

Fileless UAC Bypass Uses Windows Backup and Restore Utility

Posted on March 27, 2017 by Michael Mimoso

Researcher Matt Nelson disclosed another Windows UAC bypass, this one abusing the sdclt.exe backup and restore utility to execute a payload without triggering an alert. Continue reading Fileless UAC Bypass Uses Windows Backup and Restore Utility→

Posted in backup and restore utility, fileless malware, Hacks, local attack, Matt Nelson, Microsoft, SDCLT, uac, UAC bypass, User Access Control, Windows, windows 10 security

WikiLeaks Dump Shows CIA Interdiction of iPhone Supply Chain

Posted on March 23, 2017 by Michael Mimoso

Today’s WikiLeaks Vault 7 Dark Matter release shows the CIA’s capabilities to attack and persist on Apple iPhone and Mac firmware and an apparent interdiction of the iPhone supply chain. Continue reading WikiLeaks Dump Shows CIA Interdiction of iPhone Supply Chain→

Posted in apple, CIA, DarkSeaSkies, DerStarke, efi, Government, Hacks, iPhone firmware, Julian Assange, malware, NightSkies, SeaPea, Sonic Screwdriver, Triton, uefi, Vault 7, Vault 7 Dark Matter, wikileaks

Paper Spells Out Tech, Legal Options for Encryption Workarounds

Posted on March 23, 2017 by Michael Mimoso

Bruce Schneier and Orin Kerr have written a paper that explains the technological and legal issues associated with six encryption workarounds available to law enforcement. Continue reading Paper Spells Out Tech, Legal Options for Encryption Workarounds→

Posted in Apple-FBI, Bruce Schneier, Cryptography, encryption, encryption workarounds, fbi, Going Dark., Government, James Comey, law enforcement, metadata, mobile security, National Security, Orin Kerr, policy, San Bernardino terrorist, Security Research, Susan Landau

Google, Jigsaw Partner on Free Tools to Secure Elections

Posted on March 22, 2017 by Michael Mimoso

Jigsaw and Google said they would offer a free suite of security tools aimed at securing political elections. Continue reading Google, Jigsaw Partner on Free Tools to Secure Elections→

Posted in ddos protection, fbi, Google, Government, James Comey, Jigsaw, Password Alert, Project Shield, Protect Your Election, Russia, Security Key, two factor authentication

SAP Vulnerability Puts Business Data at Risk for Thousands of Companies

Posted on March 22, 2017 by Michael Mimoso

Researchers at ERPScan today disclosed details and a proof-of-concept exploit for a SAP GUI remote code execution vulnerability patched last week. Continue reading SAP Vulnerability Puts Business Data at Risk for Thousands of Companies→

Posted in Alexander Polyakov, CVE-2017-6950, enterprise resource planning, ERP security, ERPScan, remote code execution, SAP, SAP GUI, SAP Netweaver, SAP patches, Sap Server, SAP vulnerabilities, Troopers security conference, Vahagn Vardanyan, vulnerabilities

Code Execution Vulnerability Found in Libpurple IM Library

Posted on March 21, 2017 by Michael Mimoso

A severe vulnerability has been disclosed in libpurple, the library used in the development of a number of popular instant messaging clients, including Adium for the macOS platform. Continue reading Code Execution Vulnerability Found in Libpurple IM Library→

Posted in Adium, Adium vulnerability, CVE-2017-2640, Erythronium23, instant messenger, libpurple, libpurple vulnerability, Pidgin, privacy, Secure Messenger, security process, Security Research, vulnerabilities

Locky, Cerber Ransomware Skilled at Hiding

Posted on March 21, 2017 by Michael Mimoso

Since January, a number of ransomware families are sharing a common infrastructure with different techniques allowing the malware to hide from detection systems. Continue reading Locky, Cerber Ransomware Skilled at Hiding→

Posted in Andrea Lelli, Cerber, Deep Instinct, evade detection, fileless malware, Heaven’s Gate, locky, malware, Memory-based malware, Microsoft, NSIS installer, Ransomware, Tom Nipravsky

Local Windows Admins Can Hijack Sessions Without Credentials

Posted on March 20, 2017 by Michael Mimoso

A researcher has published a method by which a local admin can hijack any other Windows sessions without the need for credentials. Continue reading Local Windows Admins Can Hijack Sessions Without Credentials→

Posted in Alexander Korznikov, Hacks, Kevin Beaumont, Microsoft, privilege escalation, RDP, session hijacking, system, Windows commands

Vulnerability Disclosed in Ubquiti Networks Admin Interface

Posted on March 17, 2017 by Michael Mimoso

Researchers at SEC Consult disclosed a command injection vulnerability in Ubiquiti Networks gear for ISPs after a private disclosure to the vendor in November went unresolved. Continue reading Vulnerability Disclosed in Ubquiti Networks Admin Interface→

Posted in command injection vulnerability, Cross Site Scripting, Cross-site request forgery, ISP gear, networking gear, PHP, SEC Consult Vulnerability Lab, Ubiquiti Networks, vulnerabilities

Vulnerability Disclosed in Ubquiti Networks Admin Interface

Posted on March 17, 2017 by Michael Mimoso

Researchers at SEC Consult disclosed a command injection vulnerability in Ubiquiti Networks gear for ISPs after a private disclosure to the vendor in November went unresolved. Continue reading Vulnerability Disclosed in Ubquiti Networks Admin Interface→

Posted in command injection vulnerability, Cross Site Scripting, Cross-site request forgery, ISP gear, networking gear, PHP, SEC Consult Vulnerability Lab, Ubiquiti Networks, vulnerabilities

Post navigation

← Older posts

Newer posts →

Primary Sidebar Widget Area

Infocon Status

Recent Posts

Hackers Exploit Langflow Vulnerability for Remote Code Execution June 11, 2026
Siemens Says Desigo CC Files Flagged as Malware by Security Engines June 11, 2026
AI Broke Vulnerability Management. That’s Why CISOs Are Moving Budget to BAS. June 11, 2026
FBI Seizes 13 Websites That Officials Say Were Used by China to Target and Recruit US Workers June 11, 2026
Fully Autonomous Drones Have Killed Human Soldiers For the First Time June 11, 2026

Tag Cloud

Agriculture Alzheimer's Disease Art Audio Automation Bluetooth Building and Construction Campervan Camping Cancer Coronavirus (COVID-19) Cycling Dementia Diabetes DNA Electric Vehicles Food Home House Huawei Indiegogo MIT Mobility Moon New Atlas Audio NVIDIA Off-grid Off-road Pedal-assisted Photography Physics Radio Repair RV Samsung Satellite Sony SpaceX spoofing sustainable design The Immune System Tiny Footprint Training Water Zoom

Archives

Facebook
Twitter
Linkedin
Email

Copyright © 2026 WindowsTechs.com. All Rights Reserved.

Theme: Catch Box by Catch Themes

Scroll Up