Good news ! Hackbusters community is waiting for you !
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at:

Windows Flaw Exploited to Deliver PowerShell Backdoor

A local privilege escalation vulnerability patched recently by Microsoft in its Windows operating system had been exploited by malicious actors to deliver a PowerShell backdoor.

The flaw, tracked as CVE-2019-0859, was fixed by Microsoft with its April 2019 Patch Tuesday updates. According to the company, the issue exists due to the way the Win32k component in Windows handles objects in memory. The weakness allows an authenticated attacker to execute arbitrary code in kernel mode.

Microsoft has credited researchers at Kaspersky Lab for reporting the flaw and the cybersecurity firm on Monday made details of the vulnerability public. The security hole was reported to the vendor on March 17.

Kaspersky says the vulnerability is caused by a use-after-free bug. It has been used by an unnamed threat actor to execute PowerShell, Microsoft’s task automation and configuration management framework, in an effort to download a second-stage script from Pastebin. This second-stage script...(continued)

View All Trending Stories