August 30, 2024 at 01:06PM North Korean hackers utilized a patched Google Chrome zero-day to distribute the FudModule rootkit, gaining SYSTEM privileges through a Windows Kernel exploit. Microsoft attributed the attacks to the North Korean threat actor Citrine Sleet, known for targeting the cryptocurrency sector for financial gain. The group is also associated with other … Read more
June 11, 2024 at 01:37PM The following are important security vulnerabilities related to Microsoft products such as Azure, Dynamics, Microsoft Edge, Windows, and Office, with some marked as critical. These include elevation of privilege, remote code execution, and information disclosure vulnerabilities. It is crucial to address these issues promptly to ensure system security. Based on … Read more
March 2, 2024 at 10:58AM Microsoft recently patched a high-severity Windows Kernel vulnerability, CVE-2024-21338, which was actively exploited for six months after it was reported. The flaw allowed attackers to gain SYSTEM privileges without user interaction. Avast discovered that North Korean Lazarus hackers used the vulnerability to gain kernel-level access and evade security tools. Windows … Read more