in the wild – WindowsTechs.com

This Week In Security: Scamming the FBI, In The Wild, and AI Security

Posted on December 16, 2022 by Jonathan Bennett

If you’re part of a government alphabet agency, particularly running a program to share information to fight cybercrime, make sure to properly verify the identity of new members before admission. …read more Continue reading This Week In Security: Scamming the FBI, In The Wild, and AI Security→

This Week in Security: In the Wild, Through Your NAT, and Brave

Posted on November 6, 2020 by Jonathan Bennett

Most of the stories from this week are vulnerabilities dropped before fixes are available, many of them actively being exploited. Strap yourselves in!

Windows Kernel Crypto

The first is CVE-2020-17087, an issue in the Windows Kernel Cryptography Driver. The vulnerable system calls are accessible from unprivileged user-space, and potentially even …read more

Continue reading This Week in Security: In the Wild, Through Your NAT, and Brave→

Unpatched Windows Zero-Day Exploited in the Wild for Sandbox Escape

Posted on November 2, 2020 by Tara Seals

Google Project Zero disclosed the bug before a patch becomes available from Microsoft. Continue reading Unpatched Windows Zero-Day Exploited in the Wild for Sandbox Escape→

Zerologon Attacks Against Microsoft DCs Snowball in a Week

Posted on September 29, 2020 by Tara Seals

The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active exploits of CVE-2020-1472 were first flagged. Continue reading Zerologon Attacks Against Microsoft DCs Snowball in a Week→

Critical Citrix RCE Flaw Still Threatens 1,000s of Corporate LANs

Posted on February 7, 2020 by Tara Seals

RCE and myriad other types of attacks could take aim at the 19 percent of vulnerable companies that haven’t yet patched CVE-2019-19781. Continue reading Critical Citrix RCE Flaw Still Threatens 1,000s of Corporate LANs→

Rash of Exploits Targets Critical vBulletin RCE Bug

Posted on September 26, 2019 by Tara Seals

After someone dropped a zero-day exploit on Securelist this week, the platform rushed out a fix — time to apply it. Continue reading Rash of Exploits Targets Critical vBulletin RCE Bug→

BlueKeep ‘Mega-Worm’ Looms as Fresh PoC Shows Full System Takeover

Posted on June 5, 2019 by Tara Seals

A working exploit for the critical remote code-execution flaw shows how an unauthenticated attacker can achieve full run of a victim machine in about 22 seconds. Continue reading BlueKeep ‘Mega-Worm’ Looms as Fresh PoC Shows Full System Takeover→

Exploits for Social Warfare WordPress Plugin Reach Critical Mass

Posted on April 23, 2019 by Tara Seals

More and more attacks taking advantage of a XSS and RCE bug in the popular plugin have cropped up in the wild. Continue reading Exploits for Social Warfare WordPress Plugin Reach Critical Mass→

Cybercriminals Have a Heyday with WinRAR Bug in Fresh Campaigns

Posted on March 27, 2019 by Tara Seals

With new attacks on the Israeli military and social-work educators, exploitation of the 19-year-old flaw shows no signs of slowing down. Continue reading Cybercriminals Have a Heyday with WinRAR Bug in Fresh Campaigns→

Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw

Posted on March 13, 2019 by Lindsey O'Donnell

Newly patched CVE-2019-0797 is being actively exploited by two APTs, FruityArmor and SandCat. Continue reading Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw→