SandboxEscaper, the security researcher who posted a claimed 0-day Windows 10 flaw on GitHub on Tuesday, has now posted the residual four exploits that she said she owned. This is not the first time that SandboxEscaper has openly revealed Windows 0-days. The four new exploits are known as AngryPolarBearBug2, SandboxEscape, InstallerBypass and CVE-2019-0841-BYPASS. All Continue Reading
A virus in Google’s G Suite left the passwords of some users to be stored in plaintext for the past 14 years, though the company doesn’t think the information was retrieved by unauthorized third parties. In a blog post, the tech giant said: “We recently notified a subset of our Continue Reading
The technology that began as a force behind Bitcoin has taken the world by storm today. From banking to healthcare and beyond, blockchain technology has become an indispensable part of almost all facets of our lives. And cybersecurity is an industry that has been greatly affected by this technology with Continue Reading
Just a week after Microsoft’s monthly cycle of security updates, Exploit developer SandboxEscaper has silently released a new zero-day exploit for the Windows operating system. This exploit, the fifth in a string that began in late August last year, attains local privilege appreciation, yielding a limited user full control over files earmarked for Continue Reading
A memory corruption flaw lately discovered in Linux Kernel’s execution of RDS over TCP could result in privilege escalation. The vulnerability, tracked as CVE-2019-11815 and including a CVSS base score of 8.1, affects Linux kernels before 5.0.8, but only systems that use the Reliable Datagram Sockets (RDS) for the TCP module. A Continue Reading
By