Archive for the ‘Zero-Day Vulnerability’ Category

‘Highly Critical’ Unpatched Zero-Day Flaw Discovered In Oracle WebLogic

April 25th, 2019
A team of cybersecurity researchers today published a post warning enterprises of an unpatched, highly critical zero-day vulnerability in Oracle WebLogic server application that some attackers might have already started exploiting in the wild. Oracle WebLogic is a scalable, Java-based multi-tier enterprise application server that allows businesses to quickly deploy new products and services

Posted in cyber security, oracle, Oracle WebLogic Server, remote code execution, Vulnerability, Zero-Day Vulnerability | Comments (0)

Unpatched Zero-Days in Microsoft Edge and IE Browsers Disclosed Publicly

March 30th, 2019
Exclusive — A security researcher today publicly disclosed details and proof-of-concept exploits for two 'unpatched' zero-day vulnerabilities in Microsoft's web browsers after the company allegedly failed to respond to his responsible private disclosure. Both unpatched vulnerabilities—one of which affects the latest version of Microsoft Internet Explorer and another affects the latest Edge

Posted in hacking news, Internet Explorer, microsoft, Microsoft Edge browser, Microsoft Internet Explorer, Same Origin Policy Bypass, Vulnerability, Zero-Day Vulnerability | Comments (0)

Unpatched vCard Flaw Could Let Attackers Hack Your Windows PCs

January 15th, 2019
A zero-day vulnerability has been discovered and reported in the Microsoft's Windows operating system that, under a certain scenario, could allow a remote attacker to execute arbitrary code on Windows machine. Discovered by security researcher John Page (@hyp3rlinx), the vulnerability was reported to the Microsoft security team through Trend Micro's Zero Day Initiative (ZDI) Program over 6

Posted in cyber security, hacking news, vCard exploit, Vulnerability, windows hacking, windows security, windows Vulnerability, Zero-Day Vulnerability | Comments (0)

63 New Flaws (Including 0-Days) Windows Users Need to Patch Now

November 14th, 2018
It's Patch Tuesday once again…time for another round of security updates for the Windows operating system and other Microsoft products. This month Windows users and system administrators need to immediately take care of a total of 63 security vulnerabilities, of which 12 are rated critical, 49 important and one moderate and one low in severity. <!-- adsense --> Two of the vulnerabilities

Posted in hacking news, microsoft, Microsoft Patch Tuesday, Microsoft update, Security patch Update, Vulnerability, Windows 10, Zero-Day Vulnerability | Comments (0)

Unpatched VirtualBox Zero-Day Vulnerability and Exploit Released Online

November 8th, 2018
An independent exploit developer and vulnerability researcher has publicly disclosed a zero-day vulnerability in VirtualBox—a popular open source virtualization software developed by Oracle—that could allow a malicious program to escape virtual machine (guest OS) and execute code on the operating system of the host machine. The vulnerability occurs due to memory corruption issues and affects

Posted in hacking news, hypervisors, virtual machine, virtualbox, Virtualization software, Vulnerability, zero-day exploit, Zero-Day Vulnerability | Comments (0)

Hacker Discloses New Windows Zero-Day Exploit On Twitter

October 24th, 2018
A security researcher with Twitter alias SandboxEscaper—who two months ago publicly dropped a zero-day exploit for Microsoft Windows Task Scheduler—has yesterday released another proof-of-concept exploit for a new Windows zero-day vulnerability. SandboxEscaper posted a link to a Github page hosting a proof-of-concept (PoC) exploit for the vulnerability that appears to be a privilege

Posted in cybersecurity, hacking news, Microsoft Windows, operating system, windows exploit, windows Vulnerability, Windows zero-day vulnerability, zero-day exploit, Zero-Day Vulnerability | Comments (0)

Shadow Brokers Launches 0-Day Exploit Subscriptions for $21,000 Per Month

May 30th, 2017

As promised to release more zero-days exploits and hacking tools for various platforms starting from June 2017, the infamous hacking group Shadow Brokers is back with more information on how to subscribe and become a private member for receiving exclusive access to the future leaks.

The Shadow Brokers is the same hacking group who leaked NSA’s built Windows hacking tools and zero-day

Posted in download hacking tools, hacking news, hacking tools, The Shadow Brokers, zcash, zero-day exploit, Zero-Day Vulnerability | Comments (0)

Microsoft Issues Patches for Another Four Zero-Day Vulnerabilities

May 10th, 2017

As part of this month’s Patch Tuesday, Microsoft has released security patches for a total of 55 vulnerabilities across its products, including fixes for four zero-day vulnerabilities being exploited in the wild.

Just yesterday, Microsoft released an emergency out-of-band update separately to patch a remote execution bug (CVE-2017-0290) in Microsoft’s Antivirus Engine that comes enabled by

Posted in APT28 Hacker Group, hacking news, Microsoft Patch Tuesday, Microsoft Patch Update, russian hacking group, windows update download, Zero-Day Vulnerability | Comments (0)

Beware of an Unpatched Microsoft Word 0-Day Flaw being Exploited in the Wild

April 9th, 2017

It’s 2017, and opening a simple MS Word file could compromise your system.

Security researchers are warning of a new in-the-wild attack that silently installs malware on fully-patched computers by exploiting a serious — and yet unpatched — zero-day vulnerability in all current versions of Microsoft Office.

The Microsoft Office zero-day attack, uncovered by researchers from security firms

Posted in hacking news, Microsoft office, Microsoft Word, remote code execution, Windows zero-day vulnerability, zero-day exploit, Zero-Day Vulnerability | Comments (0)

Unpatchable ‘DoubleAgent’ Attack Can Hijack All Windows Versions — Even Your Antivirus!

March 22nd, 2017

A team of security researchers from Cybellum, an Israeli zero-day prevention firm, has discovered a new Windows vulnerability that could allow hackers to take full control of your computer.

Dubbed DoubleAgent, the new injecting code technique works on all versions of Microsoft Windows operating systems, starting from Windows XP to the latest release of Windows 10.

What’s worse? DoubleAgent

Posted in code injection attack, DLL hijacking, DLL injection, double agent, hack antivirus, hacking news, Microsoft Application Verifier, Microsoft vulnerability, windows exploit, Zero-Day Vulnerability | Comments (0)