SandboxEscaper Drops 4 Windows Zero-Days on GitHub

SandboxEscaper Drops 4 Windows Zero-Days

A Belgian security researcher just unleashed four Windows zero-days. T. van Houtte, also known as SandboxEscaper, dropped her proofs-of-concept onto GitHub this week ...
Security Boulevard
Wi-Fi Chip Firmware Flaws Enable Over-the-Air Hacking

Wi-Fi Chip Firmware Flaws Enable Over-the-Air Hacking

Editor’s Note: This post was updated Jan. 29 to include a statement from Marvell Wi-Fi chips used in several gaming consoles, Chromebooks, streaming boxes, routers and other types of devices have several ...
Security Boulevard
Microsoft’s Johnson: Data Breach Disclosures

New Windows Zero-day Bug Allows Deleting Arbitrary Files

A security researcher released exploit code for an unpatched bug in Windows that could allow an attacker with limited privileges to delete system files. Exploiting the bug requires winning a race condition ...
Security Boulevard
Fileless Malware Rapid Expansion

Researcher Drops Third Windows Zero-Day Exploit in Four Months

A security researcher who uses the online handle SandboxEscaper has published proof-of-concept exploit code for an unpatched vulnerability in Windows. The flaw is located in the “MsiAdvertiseProduct” function, which, according to Microsoft’s ...
Security Boulevard