Windows Mobile Device Management 0-day vulnerability could lead to local privilege escalation

A security researcher has discovered a zero-day vulnerability CVE-2021-24084 in Windows Mobile Device Management that could allow information disclosure and local privilege escalation (LPE).

Continue ReadingWindows Mobile Device Management 0-day vulnerability could lead to local privilege escalation

Android app SHAREit vulnerabilities could leak sensitive data and lead to remote code execution

Cybersecurity experts have discovered a popular Android app riddled with vulnerabilities has been download one billion times. An attacker can exploit the permissions on SHAREit mobile app to leak sensitive data and remotely execute malicious code.

Continue ReadingAndroid app SHAREit vulnerabilities could leak sensitive data and lead to remote code execution

StrandHogg Android vulnerability under active attack by dozens of malicious apps

Security researchers have discovered a dangerous Android vulnerability dubbed “StrandHogg” under active attack by dozens of malicious apps. To add, 500 of the most popular apps may also be vulnerable to the StrandHogg vulnerability.

Continue ReadingStrandHogg Android vulnerability under active attack by dozens of malicious apps