proof of concept – WindowsTechs.com

Anomaly detection in certificate-based TGT requests

Posted on July 28, 2023 by Alexander Rodchenko

I identified several signs of attacks that use forged certificates inside the network and developed a Proof-of-Concept utility capable of finding artifacts in AD, as well as a number of detection logic rules that can be added to SIEM. Continue reading Anomaly detection in certificate-based TGT requests→

This Week in Security: Bogus CVEs, Bogus PoCs, And Maybe a Bogus Breach

Posted on July 7, 2023 by Jonathan Bennett

It appears we have something of a problem. It’s not really a new problem, and shouldn’t be too surprising, but it did pop up again this week: bogus CVEs. Starting …read more Continue reading This Week in Security: Bogus CVEs, Bogus PoCs, And Maybe a Bogus Breach→

Simple Cubes Show Off AI-Driven Runtime Changes in VR

Posted on May 31, 2023 by Donald Papp

AR and VR developer [Skarredghost] got pretty excited about a virtual blue cube, and for a very good reason. It marked a successful prototype of an augmented reality experience in …read more Continue reading Simple Cubes Show Off AI-Driven Runtime Changes in VR→

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

Posted on October 13, 2022 by GReAT

We investigated CVE-2022-41352 and were able to confirm that unknown APT groups have actively been exploiting this vulnerability in the wild, one of which is systematically infecting servers in Central Asia. Continue reading Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)→

Inspiring Hacks, Unfinished Hacks

Posted on March 26, 2022 by Elliot Williams

We got a tip this week, and the tipster’s comments were along the lines of “this doesn’t look like it’s a finished work yet, but I think it’s pretty cool …read more Continue reading Inspiring Hacks, Unfinished Hacks→

Answering Log4Shell-related questions

Posted on December 20, 2021 by Kaspersky

Check out the answers to some of users’ biggest security questions about the Log4Shell vulnerabilities (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105). Continue reading Answering Log4Shell-related questions→

Exploitation of the CVE-2021-40444 vulnerability in MSHTML

Posted on September 16, 2021 by AMR

Last week, Microsoft reported the RCE vulnerability CVE-2021-40444 in the MSHTML browser engine. Kaspersky is aware of targeted attacks using this vulnerability, and our products protect against attacks leveraging it. Continue reading Exploitation of the CVE-2021-40444 vulnerability in MSHTML→

Researcher Breaks reCAPTCHA With Google’s Speech-to-Text API

Posted on January 4, 2021 by Becky Bracken

Researcher uses an old unCAPTCHA trick against latest the audio version of reCAPTCHA, with a 97 percent success rate. Continue reading Researcher Breaks reCAPTCHA With Google’s Speech-to-Text API→

Windows Zero-Day Still Circulating After Faulty Fix

Posted on December 24, 2020 by Tara Seals

The LPE bug could allow an attacker to install programs; view, change, or delete data; or create new accounts with full user rights. Continue reading Windows Zero-Day Still Circulating After Faulty Fix→

Cisco Patches Critical Flaw After PoC Exploit Code Release

Posted on November 17, 2020 by Lindsey O'Donnell

A critical path-traversal flaw (CVE-2020-27130) exists in Cisco Security Manager that lays bare sensitive information to remote, unauthenticated attackers. Continue reading Cisco Patches Critical Flaw After PoC Exploit Code Release→