Researchers Release PoC Exploit for Windows CryptoAPI Bug Discovered by NSA | allinfosecnews.com

Jan. 26, 2023, 2:52 p.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Proof-of-concept (Poc) code has been released for a now-patched high-severity security flaw in the Windows CryptoAPI that the U.S. National Security Agency (NSA) and the U.K. National Cyber Security Centre (NCSC) reported to Microsoft last year.
Tracked as CVE-2022-34689 (CVSS score: 7.5), the spoofing vulnerability was addressed by the tech giant as part of Patch Tuesday updates released in

agency bug code concept cryptoapi cve cve-2022-34689 cvss cyber cyber security exploit flaw high microsoft national national cyber security centre national security national security agency ncsc nsa patch patch tuesday patch tuesday updates poc poc exploit proof-of-concept release researchers score security severity spoofing tech tuesday u.k. national cyber security centre updates vulnerability windows

More from thehackernews.com / The Hacker News

AI Company Hugging Face Notifies Users of Suspected Unauthorized Access 1 day, 1 hour ago | thehackernews.com

access advisory artificial artificial intelligence +9

Mysterious Cyber Attack Took Down 600,000+ Routers in the U.S. 1 day, 16 hours ago | thehackernews.com

access attack bricked cyber +12

Microsoft Warns of Surge in Cyber Attacks Targeting Internet-Exposed OT Devices 1 day, 19 hours ago | thehackernews.com

attacks critical critical systems cyber +18

Beyond Threat Detection – A Race to Digital Security 1 day, 22 hours ago | thehackernews.com

attack attack surface benefits beyond +15

Russian Hackers Target Europe with HeadLace Malware and Credential Harvesting 1 day, 23 hours ago | thehackernews.com

actor apt28 bear blizzard +24

OpenAI, Meta, TikTok Disrupt Multiple AI-Powered Disinformation Campaigns 2 days, 1 hour ago | thehackernews.com

abuse ai-powered artificial artificial intelligence +21

CISA Alerts Federal Agencies to Patch Actively Exploited Linux Kernel Flaw 2 days, 15 hours ago | thehackernews.com

actively exploited agency alerts bug +34

FlyingYeti Exploits WinRAR Vulnerability to Deliver COOKBOX Malware in Ukraine 2 days, 16 hours ago | thehackernews.com

access actor anxiety called +20

Cyber Espionage Alert: LilacSquid Targets IT, Energy, and Pharma Sectors 2 days, 18 hours ago | thehackernews.com

access actor alert asia +23

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com