Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Experts published details of the actively exploited CVE-2019-0808 Windows Flaw

Cve-2019-0808
Experts from Qihoo 360 disclosed technical details of the actively exploited Windows zero-day flaw CVE-2019-0808 recently patched by Microsoft.

Researchers at the security firm Qihoo 360 disclosed technical details of the zero-day vulnerability CVE-2019-0808 that was recently patched by Microsoft.

The vulnerability was reported to Microsoft by researchers from Google’s Threat Analysis Group that observed it had been exploited alongside CVE-2019-5786, a Chrome vulnerability patched early March.

Microsoft addressed the flaw with the release of the Patch Tuesday security updates for March 2019.

At the time of the public disclosure, Google did not reveal technical information about the Windows zero-day.

The CVE-2019-0808 vulnerability affects the windows Win32k component and could be exploited by an authenticated attacker to elevate privileges and execute arbitrary code in kernel mode. An attacker can chain the flaw with a web browser vulnerability to escape sandboxes.

The...(continued)

View All Trending Stories