All posts in zero day
11 Mar, 2021
Exploit, Hafnium, Naked Security Podcast, podcast, Privacy, Python, Security News, selfies, supply chain, Vulnerability, zero day
0

by Paul Ducklin Getting to grips with the HAFNIUM gang/vulnerabilities/exploits/webshells/attacks. Why it’s important to think before you share those home-based selfies. What you need to know about social engineering. How (not!) to prove a point when you’re a programmer. With Kimberly Truong and Paul Ducklin. Intro and outro music by . . . Read more

by Paul Ducklin The cybersecurity meganews of the week, of course, is anything to do with HAFNIUM. (To be clear, we’re going to write it as Hafnium from now on, as Microsoft does in its top-level incident disclosure document, so that it doesn’t look as though we’re shouting all the . . . Read more
04 Mar, 2021
0-day, Bug, chrome, Chromium, Exploit, google, Google Chrome, patch, Security News, Vulnerability, zero day
0

by Paul Ducklin Almost exactly a month ago, or a couple of days under an average month given that February was the short one, we warned of a zero-day bug in Google’s Chromium browser code. Patch now, we said. And we’re saying it again, following Google’s otherwise cheery release of . . . Read more

by Paul Ducklin Google, whose Project Zero bug-hunting team is often surprisingly vocal when describing and discussing software vulnerabilities, has taken a very quiet approach to a just-patched bug in its Chrome browser. In this case, the low-key announcement is understandable, because the patch fixes a hole that cybercrooks are . . . Read more
21 Dec, 2020
advanced persistent threat, al-jazeera, Apple, apt, Citizen Lab, journalists, Malware, monarchy, NSO Group, Pegasus, saudi arabia, Security News, sneaky kestrel, spywarem surveillance, united arab emirates, Vulnerabilities, zero day, zero-click
0
The phones of 36 journalists were infected by four APTs, possibly linked to Saudi Arabia or the UAE. Four nation-state-backed advanced persistent threats (APTs) hacked Al Jazeera journalists, producers, anchors and executives, in an espionage attack leveraging a zero-day exploit for Apple iPhone, researchers said. The attack, carried out in . . . Read more
08 Dec, 2020
cyberattack, Cybersecurity, FireEye, Government, hack, Hacks, red team tool, Security News, state sponsored attack, zero day
0
An attacker stole FireEye’s Red Team assessment tools that the company uses to test its customers’ security.
04 Dec, 2020
cisa alert, Command injection, critical, CVE-2020-4006, Cybersecurity, NSA, patch, privilege escalation, security advisory, Security News, security vulnerability, severity rating, vmware, Vulnerabilities, workaround, zero day
0

VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.” VMware has patched a zero-day bug that was disclosed in late November – an escalation-of-privileges flaw that impacts Workspace One and other platforms, for both Windows and Linux operating systems. VMware has also . . . Read more
27 Nov, 2020
2021 predictions, Bug Bounty, Cloud Security, connected cars, Critical Infrastructure, Cryptocurrency, Cryptography, Cybersecurity, cybersecurity defense, extended detection and response, gurucul, InfoSec Insider, Internet of things, IoT, Malware, mfa, Ransomware, ransomware evolution, risk-based access control, robot overlords, Saryu Nayyar, Security News, Single sign on, Vulnerabilities, Web Security, XDR, zero day, Zero Trust
0

While 2021 will present evolving threats and new challenges, it will also offer new tools and technologies that will we hope shift the balance towards the defense. Predicting the future is always an iffy proposition. There’s the Nostradamus route, making predictions so cryptic and vague they could mean just about . . . Read more
23 Nov, 2020
0-day, Cloud Security, Command injection, CVE-2020-4006, privilege escalation, Security News, security vulnerability, VMware Identity Manager, VMware Workspace One Access, vmware zero-day, Vulnerabilities, zero day
0
VMware explained it has no patch for a critical escalation-of-privileges bug that impacts both Windows and Linux operating systems and its Workspace One. The U.S. Cybersecurity and Infrastructure Security Agency is warning of a zero-day bug affecting six VMware products including its Workspace One, Identity Manager and vRealize Suite Lifecycle . . . Read more
19 Nov, 2020
apt, Attackers, China, Cicada, domain controller, Exploit, Government, Malware, Microsoft, Microsoft Active Directory, privilege escalation, Security News, threat actors, Vulnerability, zero day, zerologon
0
Threat actors mount year-long campaign of espionage, exfiltrating data, stealing credentials and installing backdoors on victims’ networks. China-backed APT Cicada joins the list of threat actors leveraging the Microsoft Zerologon bug to stage attacks against their targets. In this case, victims are large and well-known Japanese organizations and their subsidiaries, . . . Read more