elevation of privilege – Page 2

Patch Android now! April updates fixes three critical flaws

Posted on April 3, 2019 by John E Dunn

Android’s April update includes two critical CVE-level patches among a total of 11 affecting handsets running versions 7, 8, and 9. Continue reading Patch Android now! April updates fixes three critical flaws→

Google Patches Critical Bluetooth RCE Bug

Posted on March 11, 2019 by Tom Spring

In all, Google reported 45 bugs in its March update with 11 ranked critical and 33 rated high. Continue reading Google Patches Critical Bluetooth RCE Bug→

Privilege escalation vulnerability uncovered in Microsoft Exchange

Posted on January 30, 2019 by John E Dunn

A researcher has discovered an alarming way that an attacker controlling a Microsoft Exchange mailbox account could potentially elevate their privileges to become a Domain Administrator. Continue reading Privilege escalation vulnerability uncovered in Microsoft Exchange→

Researchers Show How Popular Text Editors Can Be Attacked Via Third-Party Plugins

Posted on March 19, 2018 by Threatpost

Security risk in extensible text editors enable hackers to abuse plugins and escalate privileges. Continue reading Researchers Show How Popular Text Editors Can Be Attacked Via Third-Party Plugins→

Five Critical Android Bugs Get Patched in October Update

Posted on October 3, 2017 by Tom Spring

Android receives three remote code execution patches for vulnerabilities rated critical as Google launches a new Pixel/Nexus Security Bulletin. Continue reading Five Critical Android Bugs Get Patched in October Update→

Microsoft Issues ‘Important’ Security Fix for Azure AD Connect

Posted on June 28, 2017 by Tom Spring

Microsoft is warning customers of an “important” update to its Azure AD Connect service that could allow for an elevation of privilege attack against affected systems. Continue reading Microsoft Issues ‘Important’ Security Fix for Azure AD Connect→

Dangerous Rootkit found Pre-Installed on nearly 3 Million Android Phones

Posted on November 19, 2016 by Swati Khandelwal

Here’s some bad news for Android users again.

Nearly 3 Million Android devices worldwide are vulnerable to man-in-the-middle (MITM) attacks that could allow attackers to remotely execute arbitrary code with root privileges, turning over full control o… Continue reading Dangerous Rootkit found Pre-Installed on nearly 3 Million Android Phones→

Bypass Linux Disk Encryption Just By Pressing ‘ENTER’ for 70 Seconds

Posted on November 16, 2016 by Swati Khandelwal

A hacker with little more than a minute can bypass the authentication procedures on some Linux systems just by holding down the Enter key for around 70 seconds.

The result? The act grants the hacker a shell with root privileges, which allows them to g… Continue reading Bypass Linux Disk Encryption Just By Pressing ‘ENTER’ for 70 Seconds→

This Hack Gives Linux Root Shell Just By Pressing ‘ENTER’ for 70 Seconds

Posted on November 16, 2016 by Swati Khandelwal

A hacker with little more than a minute can bypass the authentication procedures on some Linux systems just by holding down the Enter key for around 70 seconds.

The result? The act grants the hacker a shell with root privileges, which allows them to g… Continue reading This Hack Gives Linux Root Shell Just By Pressing ‘ENTER’ for 70 Seconds→

Microsoft Patches Zero Day Disclosed by Google

Posted on November 8, 2016 by Michael Mimoso

Microsoft released 14 security bulletins today, six rated critical. Among the fixes is a patch for a Windows kernel zero-day vulnerability disclosed by Google that was being used in attacks by the Sofacy APT gang. Continue reading Microsoft Patches Zero Day Disclosed by Google→