Lucene search
K

6 matches found

Securelist
Securelist
added 2024/03/14 10:0 a.m.59 views

A patched Windows attack surface is still exploitable

On August 8, 2023, Microsoft finally released a kernel patch for a class of vulnerabilities affecting Microsoft Windows since 2015. The vulnerabilities lead to elevation of privilege EoP, which allows an account with user rights to gain SYSTEM privileges on a vulnerable host. The root cause of th...

7.2CVSS7.3AI score0.32309EPSS
Exploits5
hivepro
hivepro
added 2022/08/02 10:7 a.m.19 views

Vulnerabilities & Threats that Matter 25 – 31st July

Published Vulnerabilities Interesting Vulnerabilities Active Threat Groups Targeted Countries Targeted Industries ATT&CK TTPs 462 7 4 52 22 64 For a detailed threat digest, download the pdf file here Summary The Last week of July 2022 witnessed the discovery of 462 vulnerabilities out of which 7...

1.3AI score
Exploits0
hivepro
hivepro
added 2022/08/01 2:49 a.m.19 views

KNOTWEED exploits zero-days to target US and Europe

Threat Level Actor Report For a detailed advisory, download the pdf file here Summary KNOTWEED, an Austria-based private-sector offensive actor PSOA, are exploiting 0-day vulnerabilities of Windows and Adobe to perform targeted attacks against European and Central American customers by using thei...

3.7AI score
Exploits0
The Hacker News
The Hacker News
added 2022/07/28 11:18 a.m.133 views

Microsoft Uncovers Austrian Company Exploiting Windows and Adobe Zero-Day Exploits

A cyber mercenary that "ostensibly sells general security and information analysis services to commercial customers" used several Windows and Adobe zero-day exploits in limited and highly-targeted attacks against European and Central American entities. The company, which Microsoft describes as a...

9.6CVSS8.7AI score0.52005EPSS
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/07/27 2:0 p.m.67 views

Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits

The Microsoft Threat Intelligence Center MSTIC and the Microsoft Security Response Center MSRC found a private-sector offensive actor PSOA using multiple Windows and Adobe 0-day exploits, including one for the recently patched CVE-2022-22047, in limited and targeted attacks against European and...

7.2CVSS8.8AI score0.52005EPSS
Exploits0
Microsoft Secure
Microsoft Secure
added 2022/07/27 2:0 p.m.197 views

Untangling KNOTWEED: European private-sector offensive actor using 0-day exploits

The Microsoft Threat Intelligence Center MSTIC and the Microsoft Security Response Center MSRC found a private-sector offensive actor PSOA using multiple Windows and Adobe 0-day exploits, including one for the recently patched CVE-2022-22047, in limited and targeted attacks against European and...

7.2CVSS8.8AI score0.52005EPSS
Exploits0
Rows per page
Query Builder