Targeted Attacks Series

Stolen Source Code, Apple Zero-Days, Biden’s Privacy and Cybersecurity Policies

In episode 147 for November 16th 2020: The latest about source code stolen from US government agencies and private companies, three actively exploited iOS zero-days in the wild and new App Store ...
Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs

Zoom Zero-Day Flaw Allegedly Allows Full Takeover of Windows PCs

Video conferencing software Zoom is again in the spotlight over an alleged critical vulnerability that could allow an attacker to take over the victim’s computer and all data on it. Discovered by ...
Update your Chrome browser now! 0-day actively exploited in the wild

Update your Chrome browser now! 0-day actively exploited in the wild

Google has released a new stable version of its Internet surfing software equipped with a patch for a zero-day vulnerability that is reportedly being exploited in the wild. The flaw, if exploited, ...

February 2019 Patch Tuesday – 74 Vulns, 20 Critical, Exchange 0-day, Adobe Vulns

This month’s Patch Tuesday is very large, with 74 vulns being addressed with 20 labeled as critical. Fifteen of these critical vulns are in the Scripting Engine and browsers, with the remainder ...
VirtualBox E1000 Guest-to-Host Escape

VirtualBox zero-day flaw released on Github; working exploit available but no patch

An independent researcher has turned a bit rogue, disclosing a zero-day vulnerability in the popular VirtualBox virtualization software while expressing deep disagreement with the state of security research, and bug bounty standards ...
Windows Zero-Day Vulnerability Comes With PoC on GitHub

Windows Zero-Day Vulnerability Comes With PoC on GitHub

A new zero-day vulnerability was recently made public following a Tweet from @SandboxEscaper, who claimed to be frustrated with Microsoft and, apparently, their bug submission process. The tweet included a link to ...