Frank Crast, Author at Securezoo Blog

New PoC exploits SMBv3 vulnerability on unpatched systems

Post author:Frank Crast
Post published:June 9, 2020
Post category:Network Security / Security Updates & Patches / Vulnerabilities & Exploits

A security researcher has developed new proof-of-concept (PoC) code that can exploit an SMBv3 compression remote code execution (RCE) vulnerability CVE-2020-0796 on unpatched Windows systems.

Google releases Chrome security update (83.0.4103.97)

Post author:Frank Crast
Post published:June 4, 2020
Post category:Security Updates & Patches / Vulnerabilities & Exploits

Google has released Chrome 83.0.4103.97 for Windows, Mac and Linux. In addition, the company also released new versions of Chrome for iOS and Android.

Mozilla releases Firefox 77 with new DevTool improvements, security updates

Post author:Frank Crast
Post published:June 3, 2020
Post category:Security Updates & Patches / Vulnerabilities & Exploits

The Mozilla Foundation has released Firefox 77 with new DevTool improvements and web platform updates. The update also includes fixes for multiple vulnerabilities.

Apple releases patch for “unc0ver” jailbreak zero-day vulnerability

Post author:Frank Crast
Post published:June 2, 2020
Post category:Mobile Security / Security Updates & Patches / Vulnerabilities & Exploits / Zero-days

Apple has released a patch for a previously disclosed "Unc0ver" jailbreak 0-day vulnerability. The security updates and patch address iOS 13.5.1, macOS Catalina 10.15.5 Supplemental Update, watchOS 6.2.6, tvOS 13.4.6 and other products.

TrickBot trojan updates propagation module with nworm to evade detection

Post author:Frank Crast
Post published:June 2, 2020
Post category:Malware

TrickBot recently replaced one of its propagation modules "mworm" with new module named "nworm." The updated module can exploit vulnerable domain controllers (DCs) and evade detection by running in memory.

VMware patches multiple vulnerabilities in ESXi, Workstation, Fusion, VMRC and Horizon Client

Post author:Frank Crast
Post published:June 1, 2020
Post category:Security Updates & Patches / Vulnerabilities & Exploits

VMware issued a security advisory for multiple vulnerabilities that impact VMware ESXi, Workstation, Fusion, VMRC and Horizon Client products. An attacker could exploit one of these vulnerabilities and take control of an unpatched system.

Sandworm actors exploiting Exim MTA vulnerability

Post author:Frank Crast
Post published:May 29, 2020
Post category:Cybersecurity Attacks / Vulnerabilities & Exploits

The National Security Agency (NSA) issued a new warning of Russian cyber actors exploiting an Exim Mail Transfer Agent (MTA) vulnerability CVE-2019-10149. The cyber attacks have been ongoing since last August.

Apple security updates for macOS Catalina, Safari, iOS and other products

Post author:Frank Crast
Post published:May 27, 2020
Post category:Security Updates & Patches / Vulnerabilities & Exploits

Apple has released security updates for macOS Catalina 10.15.5, Safari 13.1.1, iOS 13.5 and other products.

Sarwent malware has new command functions, targets RDP

Post author:Frank Crast
Post published:May 27, 2020
Post category:Malware

Security researchers have discovered a new version of Sarwent malware that has new command functionality, such as executing PowerShell commands and preference for using RDP.

Microsoft patches a privileged escalation vulnerability in Edge

Post author:Frank Crast
Post published:May 26, 2020
Post category:Security Updates & Patches / Vulnerabilities & Exploits

Microsoft has issued an out-of-band patch for a privileged escalation vulnerability in Microsoft Edge (Chromium-based). Microsoft said the vulnerability CVE-2020-1195 exists in Edge when the Feedback extension improperly validates input.