Of course, the top news of the week is Zerologon. But what about new IOS updates with fix critical vulnerabilities? What about other news in the world of information security? Vulnerabilities: Cool report with h1, IOS and Bluetooth (again?); Tools: KQL with Microsoft and others; News: The largest Magecart infection, NCSC and IOS; Research: A … Continue reading Weekly Digest not only about Zerologon →
Four NO traditional sections in our weekly digest. Enjoy! Vulnerabilities and additional info LPE Windows CVE-2019-0880 Detailed research CVE-2019-0880 without exploit. Zero day? https://byteraptors.github.io/windows/exploitation/2020/05/24/sandboxescape.html According to my tests, this bug seems to be still working against a full-patched Windows 7 system and for this reason I chose not to publish the exploit code. Research story … Continue reading Vulners weekly digest #9 →
Three traditional sections in our weekly digest. Enjoy! Vulnerabilities and attacks Last week, Microsoft released its monthly update – ‘the second Tuesday patch’, which we haven’t mentioned yet, but it was done by Aleksendr Leonov in his blog. On his blog, he gave a brief overview of this update. Various researches have been published this … Continue reading Vulners weekly digest #8 →
Checkpoint published tech review about Instagram vulnerability, remember Saltstack? Quiet digest, no ransomware or attack reports. Vulnerabilities: Important, non-standard and interesting ones; Tools: Mostly cool attacking tools; News: Additional news about Instagram and CISA; Research: Less than usual, there is something to read. Feedback -> here Vulnerabilities Cisco Systems released fixes for vulnerabilities in the … Continue reading Everybody knows: windows source code leak, zerologon updates