Tag
#Endpoint Security
21 published stories tagged with Endpoint Security.
Brief: NAVER MYBOX Explorer for Windows Privilege Escalation Fixed in Version 3.0.11.160
NAVER MYBOX Explorer for Windows before 3.0.11.160 contains an improper privilege check that can allow a local attacker to escalate privileges to NT AUTHORITY\SYSTEM through registry manipulation.
Defender Guidance: NAVER MYBOX Explorer for Windows Privilege Escalation Fixed in Version 3.0.11.160
NAVER MYBOX Explorer for Windows before 3.0.11.160 contains an improper privilege check that can allow a local attacker to escalate privileges to NT AUTHORITY\SYSTEM through registry manipulation.
Detection Notes: NAVER MYBOX Explorer for Windows Privilege Escalation Fixed in Version 3.0.11.160
NAVER MYBOX Explorer for Windows before 3.0.11.160 contains an improper privilege check that can allow a local attacker to escalate privileges to NT AUTHORITY\SYSTEM through registry manipulation.
Risk Brief: NAVER MYBOX Explorer for Windows Privilege Escalation Fixed in Version 3.0.11.160
NAVER MYBOX Explorer for Windows before 3.0.11.160 contains an improper privilege check that can allow a local attacker to escalate privileges to NT AUTHORITY\SYSTEM through registry manipulation.
Brief: Fortinet issues emergency FortiClient patch for zero-day flaw
Security reporting said Fortinet released an emergency patch for a FortiClient zero-day. Administrators should prioritize vendor guidance and avoid relying on third-party summaries
Defender Guidance: Fortinet issues emergency FortiClient patch for zero-day flaw
Security reporting said Fortinet released an emergency patch for a FortiClient zero-day. Administrators should prioritize vendor guidance and avoid relying on third-party summaries
Detection Notes: Fortinet issues emergency FortiClient patch for zero-day flaw
Security reporting said Fortinet released an emergency patch for a FortiClient zero-day. Administrators should prioritize vendor guidance and avoid relying on third-party summaries
Risk Brief: Fortinet issues emergency FortiClient patch for zero-day flaw
Security reporting said Fortinet released an emergency patch for a FortiClient zero-day. Administrators should prioritize vendor guidance and avoid relying on third-party summaries
Brief: Windows Defender abused as attacker tool in recent exploit activity
Recent reporting described attackers turning Windows Defender behavior into an offensive advantage. The public source listing supports defensive review, not weaponized usage steps.
Defender Guidance: Windows Defender abused as attacker tool in recent exploit activity
Recent reporting described attackers turning Windows Defender behavior into an offensive advantage. The public source listing supports defensive review, not weaponized usage steps.
Detection Notes: Windows Defender abused as attacker tool in recent exploit activity
Recent reporting described attackers turning Windows Defender behavior into an offensive advantage. The public source listing supports defensive review, not weaponized usage steps.
Risk Brief: Windows Defender abused as attacker tool in recent exploit activity
Recent reporting described attackers turning Windows Defender behavior into an offensive advantage. The public source listing supports defensive review, not weaponized usage steps.
Brief: Payouts King ransomware uses QEMU virtual machines
BleepingComputer reported that Payouts King ransomware uses QEMU virtual machines. VM-based execution can complicate host visibility, so defenders should monitor unexpected virtual
Defender Guidance: Payouts King ransomware uses QEMU virtual machines
BleepingComputer reported that Payouts King ransomware uses QEMU virtual machines. VM-based execution can complicate host visibility, so defenders should monitor unexpected virtual
Detection Notes: Payouts King ransomware uses QEMU virtual machines
BleepingComputer reported that Payouts King ransomware uses QEMU virtual machines. VM-based execution can complicate host visibility, so defenders should monitor unexpected virtual
Risk Brief: Payouts King ransomware uses QEMU virtual machines
BleepingComputer reported that Payouts King ransomware uses QEMU virtual machines. VM-based execution can complicate host visibility, so defenders should monitor unexpected virtual
Brief: BlackSanta EDR killer highlights endpoint defense bypass risk
Dark Reading reported BlackSanta EDR-killer activity. Defenders should monitor tampering, service stoppage, driver abuse, and policy changes that weaken endpoint protection.
Defender Guidance: BlackSanta EDR killer highlights endpoint defense bypass risk
Dark Reading reported BlackSanta EDR-killer activity. Defenders should monitor tampering, service stoppage, driver abuse, and policy changes that weaken endpoint protection.
Detection Notes: BlackSanta EDR killer highlights endpoint defense bypass risk
Dark Reading reported BlackSanta EDR-killer activity. Defenders should monitor tampering, service stoppage, driver abuse, and policy changes that weaken endpoint protection.
Risk Brief: BlackSanta EDR killer highlights endpoint defense bypass risk
Dark Reading reported BlackSanta EDR-killer activity. Defenders should monitor tampering, service stoppage, driver abuse, and policy changes that weaken endpoint protection.
NAVER MYBOX Explorer for Windows Privilege Escalation Fixed in Version 3.0.11.160
NAVER MYBOX Explorer for Windows before 3.0.11.160 contains an improper privilege check that can allow a local attacker to escalate privileges to NT AUTHORITY\\SYSTEM through registry manipulation.