SandboxEscaper

SandboxEscaper Drops 4 Windows Zero-Days on GitHub

SandboxEscaper Drops 4 Windows Zero-Days

| | Cybersecurity, Information Security, LPE, Microsoft, SandboxEscaper, SB Blogwatch, security, Security News, zero-day
A Belgian security researcher just unleashed four Windows zero-days. T. van Houtte, also known as SandboxEscaper, dropped her proofs-of-concept onto GitHub this week ...
Security Boulevard
hackers

Wi-Fi Chip Firmware Flaws Enable Over-the-Air Hacking

| | firmware vulnerability, Marvell Avastar, micropatch, over-the-air attack, SandboxEscaper, Wi-Fi chip, Windows vulnerability, wireless exploit, Zero-day Exploit
Editor’s Note: This post was updated Jan. 29 to include a statement from Marvell Wi-Fi chips used in several gaming consoles, Chromebooks, streaming boxes, routers and other types of devices have several ...
Security Boulevard
National Public Data breach lawsuit

New Windows Zero-day Bug Allows Deleting Arbitrary Files

| | arbitrary file write, bug bounty program, open source, SandboxEscaper, Windows vulnerability, Zero-day Exploit
A security researcher released exploit code for an unpatched bug in Windows that could allow an attacker with limited privileges to delete system files. Exploiting the bug requires winning a race condition ...
Security Boulevard
OpenText, data, malware, backup Malware

Researcher Drops Third Windows Zero-Day Exploit in Four Months

| | APT10, cyberespionage, MsiAdvertiseProduct, Privilege Escalation, SandboxEscaper, Windows vulnerability, Zero-day Exploit
A security researcher who uses the online handle SandboxEscaper has published proof-of-concept exploit code for an unpatched vulnerability in Windows. The flaw is located in the “MsiAdvertiseProduct” function, which, according to Microsoft’s ...
Security Boulevard