North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT MalwareScarCruft exploits a Windows zero-day vulnerability in 'toast' ads to deliver RokRAT malware, necessitating user interaction for execution.
Back to the future: Windows Update is now a trojan horse for hackersA vulnerability in Windows Update can make fully patched machines vulnerable to past exploits.
Critical Windows kernel vulnerability easily escalates system privilegesA critical Windows kernel vulnerability allows local hackers to escalate system privileges without user interaction, with active exploitation ongoing.
Windows 0-day was exploited by North Korea to install advanced rootkitA Windows zero-day vulnerability was used by North Korean hackers to install advanced malware, posing significant threats to sensitive sector operations.
Black Basta may have exploited Microsoft flaw before a patch was issuedThe Black Basta ransomware group exploited a Windows privilege escalation vulnerability (CVE-2024-26169) before Microsoft issued a patch, highlighting the risk of zero-day exploits.
North Korean ScarCruft Exploits Windows Zero-Day to Spread RokRAT MalwareScarCruft exploits a Windows zero-day vulnerability in 'toast' ads to deliver RokRAT malware, necessitating user interaction for execution.
Back to the future: Windows Update is now a trojan horse for hackersA vulnerability in Windows Update can make fully patched machines vulnerable to past exploits.
Critical Windows kernel vulnerability easily escalates system privilegesA critical Windows kernel vulnerability allows local hackers to escalate system privileges without user interaction, with active exploitation ongoing.
Windows 0-day was exploited by North Korea to install advanced rootkitA Windows zero-day vulnerability was used by North Korean hackers to install advanced malware, posing significant threats to sensitive sector operations.
Black Basta may have exploited Microsoft flaw before a patch was issuedThe Black Basta ransomware group exploited a Windows privilege escalation vulnerability (CVE-2024-26169) before Microsoft issued a patch, highlighting the risk of zero-day exploits.
New Windows vulnerability could repeatedly trigger the blue screen of death on millions of devicesA Windows vulnerability in CLFS.sys driver can crash systems, rated medium severity, requires low privilege but local access to exploit.
Threat actors exploited Windows 0-day for more than a year before Microsoft fixed itThreat actors exploited Windows zero-day vulnerability for over a year before Microsoft patched it.