Browsing CategoryWindows

Emergency Security Updates

Microsoft has released an emergency security updates for critical vulnerabilities that allow attackers to execute arbitrary code on the vulnerable machine. The vulnerability rated as critical and it resides in Microsoft Windows Codecs Library that handles objects in the memory. The out-of-band security updates fix the critical-severity flaw (CVE-2020-1425) and important-severity vulnerability (CVE-2020-1457). CVE-2020-1425 & […]

The post Microsoft Released Emergency Security Updates for Windows 10 to Fix Remote Code Execution Bugs appeared first on GBHackers On Security.

SMBleed

Researchers uncovered a critical bug names as “SMBleed” in the Microsoft Server Message Block (SMB) network communication protocol. This security flaw was named as SMBleed and identified as CVE-2020-1206; this vulnerability could easily enable the attackers to drip all the confidential data from the kernel memory remotely. Combined this kind of vulnerability with the previous […]

The post SMBleed – Windows SMB Protocol Bug Let Hackers Leak Kernel Memory & Execute a Code Remotely appeared first on GBHackers On Security.

Docker has fixed a vulnerability that could have allowed an attacker to gain control of a Windows system using its service. The bug, discovered by Ceri Coburn, a researcher at security consultancy Pen Test Partners, exposed Docker for Windows to privilege elevation. Docker is a container system that lets administrators run applications in their own […]

Blue Mockingbird Hacker Group Attack Windows Machines at Multiple Organizations to Deploy cryptocurrency-mining Malware

Security researchers from Red Canary discovered potential hacker group Blue Mockingbirddeploying Monero cryptocurrency-mining payloads deployed on the Internet-facing Windows machines at multiple organizations. The group found to be active since December 2019 and they use several techniques to bypass security technologies. Blue Mockingbird Campaign To gain initial access attackers exploit public-facing web applications those specifically […]

The post Blue Mockingbird Hacker Group Attack Windows Machines at Multiple Organizations to Deploy cryptocurrency-mining Malware appeared first on GBHackers On Security.