all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Lazarus Hackers Exploited Windows kernel 0-day In The Wild

Add to bookmarks
March 1, 2024, 8:12 a.m. | Eswar

Cyber Security News cybersecuritynews.com

The Lazarus threat group has been exploiting a Microsoft vulnerability associated with Windows Kernel Privilege Escalation to establish a kernel-level read/write primitive. This vulnerability was previously unknown which exists in the appid.sys AppLocker driver. This vulnerability has been assigned with CVE-2024-21338 and has been addressed by Microsoft on their February patch. Once established, threat actors […]


The post Lazarus Hackers Exploited Windows kernel 0-day In The Wild appeared first on Cyber Security News.

applocker cve cve-2024-21338 cyber security cyber-security-research driver escalation exploited exploiting february hackers kernel lazarus lazarus group microsoft microsoft vulnerability patch privilege privilege escalation threat threat group vulnerability windows windows kernel zero-day zero-day exploit

Visit resource

More from cybersecuritynews.com / Cyber Security News

Cactus Ransomware Exploiting Qlik Servers Vulnerability 1 day, 7 hours ago | cybersecuritynews.com
cactus cactus ransomware code code execution +28
Hackers Abuse Autodesk Drive For Hosting Weaponized PDF Files 1 day, 7 hours ago | cybersecuritynews.com
abuse attack autodesk campaign +19
MuddyWater Hackers Abusing Legitimate RMM Tool to Deliver Malware 1 day, 11 hours ago | cybersecuritynews.com
abusing actor agent atera +26
Hackers Actively Exploiting WP Automatic Updates Plugin Vulnerability 1 day, 12 hours ago | cybersecuritynews.com
attack automatic can compromise +27
Microsoft Releases Historical MS-DOS 4.0 Source Code to the Public 1 day, 12 hours ago | cybersecuritynews.com
accessibility code decision developers +12
PoC Exploit Released For Critical Flowmon Vulnerability 1 day, 12 hours ago | cybersecuritynews.com
analysis a network command command injection +26
Chrome Critical Flaw Let Attackers Execute Arbitary Code : Patch Now 1 day, 12 hours ago | cybersecuritynews.com
arbitrary code attackers browservulnerability channel +21
Hackers Exploit Google Ads to Spread IP Scanner with Concealed Backdoor 2 days ago | cybersecuritynews.com
ads attacker backdoor campaign +23
PlugX USB worm Infected Over 2.5M Devices 2 days, 5 hours ago | cybersecuritynews.com
cyber security cybersecurity devices fame +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Cybersecurity Engineer

@ Booz Allen Hamilton | USA, VA, Arlington (1550 Crystal Dr Suite 300) non-client
View on infosec-jobs.com

Invoice Compliance Reviewer

@ AC Disaster Consulting | Fort Myers, Florida, United States - Remote
View on infosec-jobs.com

Technical Program Manager II - Compliance

@ Microsoft | Redmond, Washington, United States
View on infosec-jobs.com

Head of U.S. Threat Intelligence / Senior Manager for Threat Intelligence

@ Moonshot | Washington, District of Columbia, United States
View on infosec-jobs.com

Customer Engineer, Security, Public Sector

@ Google | Virginia, USA; Illinois, USA
View on infosec-jobs.com
View more jobs