EUVD-2023-32266

Malicious code in bioql PyPI...

A week in security (October 7 – October 13)

Last week on Malwarebytes Labs: Modern TVs have "unprecedented capabilities for surveillance and manipulation," group reveals Internet Archive suffers data breach and DDoS Google Search user interface: A/B testing shows security concerns remain AI girlfriend site breached, user fantasies stolen...

CVE-2023-28596

CVE-2023-28596 affects the Zoom Client for IT Admin on macOS installers prior to version 5.13.5. According to PT-2023-2170 and corroborating sources, the issue is a local privilege escalation where a low-privileged user can leverage the installer execution flow to gain root privileges, potentiall...

Privilege escalation

Zoom Client for IT Admin Windows installers before version 5.13.5 contain a local privilege escalation vulnerability. A local low-privileged user could exploit this vulnerability in an attack chain during the installation process to escalate their privileges to the SYSTEM user...

CVE-2023-22883

CVE-2023-22883 affects the Zoom Client for IT Admin Windows installers prior to version 5.13.5. The issue is a local privilege escalation caused by synchronization errors when using a shared resource during installation, enabling a low-privileged user to elevate to SYSTEM during the install proce...

PT-2023-2194 · Zoom · Zoom Client For It Admin

Name of the Vulnerable Software and Affected Versions: Zoom Client for IT Admin versions prior to 5.13.5 Description: The issue is related to a local privilege escalation vulnerability in the Zoom Client for IT Admin Windows installers. It is caused by synchronization errors when using a shared...

Threat Source newsletter (Sept. 15, 2022) — Teachers have to be IT admins now, too

By Jon Munshaw. Welcome to this week’s edition of the Threat Source newsletter. Public schools in the United States already rely on our teachers for so much — they have to be educators, occasional parental figures, nurses, safety officers, law enforcement and much more. Slowly, they’re having to...

Know your threats: the nine scariest malware monsters

It's been a particularly ghoulish year in cybersecurity, from Russian hacks to ransomware outbreaks. The bad boogey man in the black hoodie has been pulling one over the collective public. It's dark and creepy, but users refuse to stop peeking behind the door. It's enough to make even the most...

Getting Started with Citrix Secure Web

The purpose of this getting started guide is to provide a reference document with key information about Citrix Citrix Secure Web. Navigation: What is Citrix Secure Web? Citrix Secure Web MicroVPN Connection Modes Supported Web Technologies Configure Citrix Secure Web and Proxy Servers MicroVPN...