Mur d'images - Cyberveille

curated by Decio

Windows 11, Tesla, and Ubuntu Linux hacked at Pwn2Own Vancouver

ESET fixed high-severity local privilege escalation bug in Windows products

Zoom fixed critical flaw CVE-2024-24691 in Windows software

The "EventLogCrasher" 0day For Remotely Disabling Windows Event Log, And a Free Micropatch For It

Bitwarden Heist - How to Break Into Password Vaults Without Using Passwords

Microsoft disables MSIX protocol handler abused in malware attacks

Windows 10 gets three more years of security updates, if you can afford them | Ars Technica

How to bypass Windows Hello, log into vulnerable laptops

The evolution of Windows authentication

Hackers exploit gaping Windows loophole to give their malware kernel access

Unmasking the Meduza Stealer: Comprehensive Analysis & Countermeasures

Decrypted: Akira Ransomware

Patch Tuesday -> Exploit Wednesday: Pwning Windows Ancillary Function Driver for WinSock (afd.sys) in 24 Hours

Threat groups are using Windows LNK files to gain access

Exploring ZIP Mark-of-the-Web Bypass Vulnerability (CVE-2022-41049)

Chaos is a Go-based Swiss army knife of malware

Microsoft finds Raspberry Robin worm in hundreds of Windows networks

From NtObjectManager to PetitPotam

NSA, Partners Recommend Properly Configuring, Monitoring PowerShell in New Report

7-zip now supports Windows ‘Mark-of-the-Web’ security feature

Raspberry Robin gets the worm early

SVCReady: A New Loader Gets Ready

Malicious PyPI package opens backdoors on Windows, Linux, and Macs

CVE-2022-26925 : Patchez vos machines Windows sans attendre

Dec0ne/KrbRelayUp: KrbRelayUp - a universal no-fix local privilege escalation in windows domain environments where LDAP signing is not enforced (the default settings).

Microsoft Zero-Days, Wormable Bugs Spark Concern

Dropping Files on a Domain Controller Using CVE-2021-43893

SysJoker : un malware pour macOS, Windows et Linux qui opère discrètement depuis des mois

New SysJoker Backdoor Targets Windows, Linux, and macOS