Windows driver zero-day exploited by Lazarus hackers to install rootkit
HomeNewsMicrosoftWindows driver zero-day exploited by Lazarus hackers to install rootkit The notorious North Korean Lazarus hacking group exploited a zero-day flaw in the Windows AFD.sys driver to elevate privileges and install the FUDModule rootkit on targeted systems. Microsoft fixed the flaw, tracked as CVE-2024-38193 during its August 2024 Patch Tuesday, along with seven other zero-day vulnera
Linux kernel impacted by new SLUBStick cross-cache attack
A novel Linux Kernel cross-cache attack named SLUBStick has a 99% success in converting a limited heap vulnerability into an arbitrary memory read-and-write capability, letting the researchers elevate privileges or escape containers. The discovery comes from a team of researchers from the Graz University of Technology who demonstrated the attack on Linux kernel versions 5.9 and 6.2 (latest) using
GitHub warns of SAML auth bypass flaw in Enterprise Server
GitHub has fixed a maximum severity (CVSS v4 score: 10.0) authentication bypass vulnerability tracked as CVE-2024-4985, which impacts GitHub Enterprise Server (GHES) instances using SAML single sign-on (SSO) authentication. Exploiting the flaw would allow a threat actor to forge a SAML response and gain administrator privileges, providing unrestricted access to all of the instance's contents witho
Red Hat warns of backdoor in XZ tools used by most Linux distros
HomeNewsSecurityRed Hat warns of backdoor in XZ tools used by most Linux distros Today, Red Hat warned users to immediately stop using systems running Fedora development and experimental versions because of a backdoor found in the latest XZ Utils data compression tools and libraries. "PLEASE IMMEDIATELY STOP USAGE OF ANY FEDORA 41 OR FEDORA RAWHIDE INSTANCES for work or personal activity," Red Hat
リリース、障害情報などのサービスのお知らせ
最新の人気エントリーの配信
j次のブックマーク
k前のブックマーク
lあとで読む
eコメント一覧を開く
oページを開く
Tails OS merges with Tor Project for better privacy, security
Windows vulnerability abused braille “spaces” in zero-day attacks
Admins of MFA bypass service plead guilty to fraud
QNAP adds NAS ransomware protection to latest QTS version
Hackers use PHP exploit to backdoor Windows systems with new malware
CISA warns of Windows bug exploited in ransomware attacks
Microsoft: APT28 hackers exploit Windows flaw reported by NSA
Windows Kernel bug fixed last month exploited as zero-day since August
Wyze investigating 'security issue' amid ongoing outage
Raspberry Robin malware evolves with early access to Windows exploits
New RustDoor macOS malware impersonates Visual Studio update
Payoneer accounts in Argentina hacked in 2FA bypass attacks
TeamViewer abused to breach networks in new ransomware attacks
iShutdown scripts can help detect iOS spyware on your iPhone
Microsoft working on a fix for Windows 10 0x80070643 errors
Google Search bug shows blank page in Firefox for Android