Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Patched Windows Zero-Day Provided Full Control Over Vulnerable Systems

Windows_10

A Windows zero-day vulnerability which got patched by Microsoft as part of the company's April 2019 Patch Tuesday together with 73 other flaws could allow potential attackers to take full control of vulnerable systems.

The 0-day was actively exploited before patching, with Kaspersky Lab's researchers Vasiliy Berdnikov and Boris Larinfinding an exploit in the wild actively targeting multiple64-bit versions of Windows, ranging from "Windows 7 to older builds of Windows 10."

One of fiveelevations of privilege flaws

This is not the first Local Privilege Escalation flaw discovered by the theKaspersky Lab researchers recently, with following four others having been patched during the past few months by Redmond:

TheUse-After-Free vulnerabilitytracked as CVE-2019-0859 is present in the win32k.syskernel mode driver and it stems from the fact the "component fails to properly handle objects in memory."

"An attacker who successfully exploited this vulnerability could run arbitrary code...(continued)

View All Trending Stories