Open the wrong “PDF” and attackers gain remote access to your PC

Cybercriminals behind a campaign dubbed DEADVAX are taking phishing one step further by delivering malware inside virtual hard disks that pretend to be ordinary PDF documents. Open the wrong “invoice” or “purchase order” and you won't see a document at all. Instead, Windows mounts a virtual drive...

DEAD#VAX Malware Campaign Deploys AsyncRAT via IPFS-Hosted VHD Phishing Files

Threat hunters have disclosed details of a new, stealthy malware campaign dubbed DEADVAX that employs a mix of "disciplined tradecraft and clever abuse of legitimate system features" to bypass traditional detection mechanisms and deploy a remote access trojan RAT known as AsyncRAT. "The attack...

EUVD-2016-8082

Malware in sbrugna...

EUVD-2016-8084

Malware in sbrugna...

EUVD-2014-4865

Malware in sbrugna...

EUVD-2025-20567

Malicious code in bioql PyPI...

EUVD-2024-18373

Malicious code in bioql PyPI...

EUVD-2025-20656

Malicious code in bioql PyPI...

EUVD-2025-20635

Malicious code in bioql PyPI...

EUVD-2025-20615

Malicious code in bioql PyPI...

CVE-2025-54112 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

...

CVE-2025-54112

CVE-2025-54112 is a local privilege escalation in the Microsoft Virtual Hard Drive caused by a use-after-free, enabling an authenticated attacker to obtain higher privileges on affected Windows systems. The connected sources (including the NCSC advisory and the CVE table for Windows Hyper-V) cate...

CVE-2025-54112 Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

...

Microsoft Virtual Hard Disk Elevation of Privilege Vulnerability

Use after free in Microsoft Virtual Hard Drive allows an authorized attacker to elevate privileges locally...

Microsoft Virtual Hard Disk 资源管理错误漏洞

Microsoft Virtual Hard Disk is a virtual hard disk file format from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Virtual Hard Disk. An attacker could exploit this vulnerability to elevate privileges. The following products and versions are...

(Pwn2Own) Microsoft Windows 11 vhdmp Use-After-Free Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Virtual Hard...

(Pwn2Own) Microsoft Windows 11 vhdmp Improper Validation of Array Index Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Virtual Hard...

(Pwn2Own) Microsoft Windows 11 vhdmp Integer Overflow Local Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Virtual Hard...

Microsoft Virtual Hard Disk (VHDX) 11 - Remote Code Execution (RCE)

Titles: Microsoft Virtual Hard Disk VHDX 11 - Remote Code Execution RCE Author: nu11secur1ty Date: 07/23/2025 Vendor: Microsoft Software: https://www.microsoft.com/en-us/windows/windows-11?r=1 Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-49683 Base Score: 7.8 HIGHVector:...

CVE-2025-47973

Buffer over-read in Virtual Hard Disk VHDX allows an unauthorized attacker to elevate privileges locally...