CeptBiro - Sécurité et Cybersécurité de l'information’s Post

New Critical Rust Vulnerability Allows Attackers to Inject Commands on Windows Systems: A new critical vulnerability has been discovered in two of the Rust standard libraries, which could allow a threat actor to execute shell commands on vulnerable versions. This vulnerability has been assigned CVE-2024-24576, and its severity has been given as 10.0 (Critical). In this report, Rust Security Response stated that they have not identified a […] The post New Critical Rust Vulnerability Allows Attackers to Inject Commands on Windows Systems appeared first on GBHackers on Security | #1 Globally Trusted Cyber Security News Platform.

🚀 Day-15/20 🛡️ 🌟 Excited to Share a Milestone! 🌐 🚨 Cyberattack Persistence: Maintaining Access 🚨 In the Persistence phase, attackers ensure they can maintain access to a compromised system, even if the initial breach is detected or removed. Common techniques include: 1️⃣ Web Shells: Malicious scripts on web servers for continuous access. 2️⃣ Backdoors: Tools like Meterpreter installed on victim machines for remote control. 3️⃣ Windows Services: Modifying services to run malicious code. 4️⃣ Registry/Startup Folder: Adding entries to execute payloads at login. 5️⃣ Timestomping: Modifying file timestamps to evade detection. These methods help attackers stay undetected while maintaining long-term access. Stay vigilant! 💻🔒 #CyberSecurity #Persistence #Malware #InfoSec #CyberAwareness #DataProtection #CyberThreats #TechSecurity #NeverStopLearning #DrGViswanathanChallenge #IbelieveIcanfly #20dayofcoding #ChallengeAccepted #LearningJourney #ConsistencyChallenge #Tryhackme #NeverStopLearning

Hackers Can Exploit Windows Driver Use-After-Free Vulnerability (CVE-2024-38193) to Gain Systems Privileges A critical use-after-free vulnerability called CVE-2024-38193 is found in the Windows driver afd.sys. It affects the Registered I/O (RIO) extension for Windows sockets and lets attachers take over the whole system remotely. The August 2024 Patch Tuesday update has addressed the vulnerability. The flaw lies within the RIO component of the afd.sys driver, which is utilized to optimize socket programming by minimizing system calls. The issue emerges due to a race condition between two functions, AfdRioGetAndCacheBuffer() and AfdRioDereferenceBuffer(). This condition can be exploited by malicious actors to access freed memory, potentially leading to privilege escalation. Stay Connected to Sidharth Sharma, CPA, CISA, CISM, CFE, CDPSE for content related to Cyber Security. #CyberSecurity #JPMC #Technology #InfoSec #DataProtection #DataPrivacy #ThreatIntelligence #CyberThreats #NetworkSecurity #CyberDefense #SecurityAwareness #ITSecurity #SecuritySolutions #CyberResilience #DigitalSecurity #SecurityBestPractices #CyberRisk #SecurityOperations 

⚠️ Windows Downgrade Attack: New Vulnerability Threatens System Security ⚠️ A newly identified Windows Downgrade Attack vulnerability allows attackers to exploit system downgrade mechanisms to bypass security updates and access older, less secure software versions. By forcing Windows systems into these downgrades, attackers can take advantage of outdated security measures, potentially gaining unauthorized access, escalating privileges, or compromising sensitive data. This attack underscores the importance of maintaining strict update policies and securing downgrade pathways to prevent exploitation. Security professionals advise reinforcing system policies to block unauthorized downgrades and monitoring system logs for unusual activity to detect potential threats early. For more information on this vulnerability and best practices for protection, see the source link: https://lnkd.in/duDMqj9X #CyberSecurity #WindowsSecurity #DowngradeAttack #InfoSec #SystemSecurity #Vulnerability #DataProtection #TechNews #ITSecurity

Researchers have discovered an OS downgrade attack that allows hackers to force devices to use outdated, vulnerable versions of their operating systems. This attack poses significant security risks, enabling attackers to exploit previously patched vulnerabilities. #Cybersecurity #OSDowngrade #Vulnerability #SecurityAlert

🚨 #CyberSecurity Alert 🚨 Cybersecurity and Infrastructure Security Agency (CISA) has issued a warning about a critical Windows Print Spooler flaw that is being exploited by threat actors, including APT28 (Forest Blizzard). The CVE-2022-38028 vulnerability allows system-level access, making it a serious threat to organizations. Act fast and remediate with confidence GYTPOL. Our tool offers the most visibility and dependency mapping, allowing you to detect and remediate the susceptibility with zero impact in under 60 minutes. Don't wait for a cyber attack to happen, learn more about GYTPOL and get in touch to see our unique tool in action. #ThreatAlert 🖥️🔒 #RevealRemediateRelax Tal Kollender Dean Roberts Tyson Hempel Paul Goldweitz Will Matthews Yury Kissin 🇮🇱 Mark Zuk Bar Bikovsky Oscar W. Frank Tiano David Rummage Chris O'Connor Mor Bikovsky Snir Cohen Rick Whitney

Exploit for Windows Elevation of Privilege Vulnerability (CVE-2024-26229) Now Available on GitHub, Utilize at Your Own Risk. Details: https://lnkd.in/giG46yh3 #cybersecurity #infosec #infosecurity

Unmasking the Hidden Threat: Windows Downgrade Cyberattack Exposed 🚨 Breaking News from Black Hat USA 2024 🚨 Cybersecurity researcher Alon Leviev has unveiled a groundbreaking vulnerability in Windows that allows attackers to downgrade fully patched systems, exposing them to previously patched zero-days and vulnerabilities. Dubbed Windows Downdate, this tool can make “fully patched” a meaningless term. Leviev’s findings highlight the critical need for robust security measures to prevent such downgrade attacks. Let’s stay vigilant and proactive in safeguarding our digital environments! 🔒💻 #CyberSecurity #Windows #BlackHat2024 #TechInnovation #StaySafe https://lnkd.in/d58mjKqP

🚨 #CISA Adds 4 New Critical Vulnerabilities to KEV Catalog - Patch Now! 🔍 Latest Additions: - CVE-2024-21413: #Microsoft Outlook vulnerability - CVE-2024-0519: #Apple WebKit bug - CVE-2024-21410: #Windows SmartScreen bypass - CVE-2023-7101: Infinite #WP vulnerability ⚠️ Impact: - Remote code execution risks - Information disclosure - Security feature bypass - Authentication bypass possibilities - Actively being exploited in the wild 📅 Deadline: Federal agencies must patch by February 28, 2024 🔗 Source: https://lnkd.in/dAHQktt3 Has your organization patched these vulnerabilities? Share your patch management strategies! 👇 #CyberSecurity #InfoSec #DataProtection #CyberSafety #OnlineSecurity #DataPrivacy #ThreatIntelligence #NetworkSecurity #CloudSecurity #VulnerabilityManagement #PatchManagement #Windows #Apple #WordPress #CyberDefense #EthicalHacking #PenTesting #CyberSecurityJobs #CISO #WomenInCyber

Exploit for Windows Elevation of Privilege Vulnerability (CVE-2024-26229) Now Available on GitHub, Utilize at Your Own Risk. Details: https://lnkd.in/gUi-PMza #cybersecurity #infosec #infosecurity