Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

CVE-2019-0803 Windows flaw exploited to deliver PowerShell Backdoor

Windows-zero-day
A recently fixed local privilege escalation flaw in windows (CVE-2019-0803) had been exploited by bad actors to deliver PowerShell Backdoor.

April 2019 Patch Tuesday security updates addressed a local privilege escalation flaw in Windows operating system, tracked as CVE-2019-0859 that had been exploited by threat actors to deliver a PowerShell backdoor.

The flaw could allow an attacker to escalate privileges on the target system, it exists due to the way the Win32k component handles objects in memory. The flaw could allow an authenticated attacker to execute arbitrary code in kernel mode.

The CVE-2019-0859 was the fifth Windows zero-day discovered by Kaspersky experts in a few months. The previously reported flaws had been exploited in targeted campaigns carries out by several threat actors, including FruityArmor and SandCat.

The vulnerability was discovered by Kaspersky Lab that reported it to the tech giant on March 17.

“In early March, our proactive security technologies...(continued)

View All Trending Stories