Security News

A threat group tracked by security firm ESET as “PowerPool” has been exploiting a Windows zero-day vulnerability to elevate the privileges of a backdoor in targeted attacks. read more

Earlier this week a security researcher that goes by “SandboxEscaper” published details and a PoC exploit for a zero-day local privilege escalation vulnerability affecting Windows. Microsoft has,...

A patch is available for a read more

Flaw allows a local user to obtain System privileges.

A Windows task scheduler API function does not check permissions - so any potential local bad actor can alter them to gain elevated privileges.

A Windows zero-day local privilege escalation flaw and a Proof-of-Concept exploit for it have been revealed on Monday by someone who goes by SandboxEscaper on Twitter. The user in question deleted...

There is no known workaround for the security flaw.

Details of an unpatched vulnerability in Microsoft’s Windows 10 operating system were made public on Monday, via Twitter. read more

A security researcher has publicly disclosed the details of a previously unknown zero-day vulnerability in the Microsoft's Windows operating system that could help a local user or malicious...

Local privilege escalation in procedure calls It's not bad enough to take Microsoft out-of-cycle, but CERT/CC has just put out a warning of a new privilege escalation bug in Windows.…