Lazarus APT exploited zero-day in Windows driver to gain kernel privileges | allinfosecnews.com

Feb. 29, 2024, 8:11 a.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

North Korea-linked Lazarus APT exploited a zero-day flaw in the Windows AppLocker driver (appid.sys) to gain kernel-level access to target systems. Avast researchers observed North Korea-linked Lazarus APT group using an admin-to-kernel exploit for a zero-day vulnerability in the appid.sys AppLocker driver. The zero-day, tracked as CVE-2024-21338 has been addressed by Microsoft in the February […]

access admin applocker apt apt group avast breaking news cve cve-2024-21338 driver exploit exploited flaw hacking information security news it information security kernel kernel privileges korea lazarus lazarus apt lazarus apt group malware north north korea pierluigi paganini privileges researchers rootkit systems target vulnerability windows windows driver zero-day zero-day flaw zero-day vulnerability

More from securityaffairs.co / Security Affairs

Targeted operation against Ukraine exploited 7-year-old MS Office bug 3 hours ago | securityaffairs.co

back breaking news bug campaign +31

Hackers may have accessed thousands of accounts on the California state welfare platform 20 hours ago | securityaffairs.co

accounts benefitscal breach breached +21

Brokewell Android malware supports an extensive set of Device Takeover capabilities 1 day, 3 hours ago | securityaffairs.co

android android malware breaking news brokewell android malware +18

Experts warn of an ongoing malware campaign targeting WP-Automatic plugin 1 day, 21 hours ago | securityaffairs.co

automatic backdoors breaking news campaign +33

Cryptocurrencies and cybercrime: A critical intermingling 1 day, 23 hours ago | securityaffairs.co

breaking news critical cryptocurrencies cyber crime +14

Kaiser Permanente data breach may have impacted 13.4 million patients 1 day, 23 hours ago | securityaffairs.co

american breach breaking news care +27

Over 1,400 CrushFTP internet-facing servers vulnerable to CVE-2024-4040 bug 2 days, 2 hours ago | securityaffairs.co

attacks breaking news bug critical +25

Sweden’s liquor supply severely impacted by ransomware attack on logistics company 2 days, 4 hours ago | securityaffairs.co

alcohol attack breaking news critical +17

CISA adds Cisco ASA and FTD and CrushFTP VFS flaws to its Known Exploited Vulnerabilities … 2 days, 15 hours ago | securityaffairs.co

actor agency asa breaking news +28

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations

View on infosec-jobs.com

Security Officer Hospital Laguna Beach

@ Allied Universal | Laguna Beach, CA, United States

View on infosec-jobs.com

Sr. Cloud DevSecOps Engineer

@ Oracle | NOIDA, UTTAR PRADESH, India

View on infosec-jobs.com

Cloud Operations Security Engineer

@ Elekta | Crawley - Cornerstone

View on infosec-jobs.com

Cybersecurity – Senior Information System Security Manager (ISSM)

@ Boeing | USA - Seal Beach, CA

View on infosec-jobs.com

Engineering -- Tech Risk -- Security Architecture -- VP -- Dallas

@ Goldman Sachs | Dallas, Texas, United States

View on infosec-jobs.com