all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Lazarus hackers exploited Windows zero-day to gain Kernel privileges

Add to bookmarks
Feb. 28, 2024, 5:24 p.m. | Bill Toulas

BleepingComputer www.bleepingcomputer.com

North Korean threat actors known as the Lazarus Group exploited a flaw in the Windows AppLocker driver (appid.sys) as a zero-day to gain kernel-level access and turn off security tools, allowing them to bypass noisy BYOVD (Bring Your Own Vulnerable Driver) techniques. [...]

access applocker bring your own vulnerable driver byovd bypass driver exploited flaw hackers kernel kernel privileges lazarus lazarus group microsoft noisy north north korean own privileges security security tools techniques threat threat actors tools turn vulnerable vulnerable driver windows zero-day

Visit resource

More from www.bleepingcomputer.com / BleepingComputer

Japanese police create fake support scam payment cards to warn victims 19 hours ago | www.bleepingcomputer.com
convenience elderly fake fraud +14
Okta warns of "unprecedented" credential stuffing attacks on customers 21 hours ago | www.bleepingcomputer.com
access access management accounts attacks +15
Telegram is down with "Connecting" error 1 day, 20 hours ago | www.bleepingcomputer.com
apps down error mobile +5
Fake job interviews target developers with new Python backdoor 1 day, 22 hours ago | www.bleepingcomputer.com
access backdoor campaign dev +18
Kaiser Permanente: Data breach may impact 13.4 million patients 2 days, 3 hours ago | www.bleepingcomputer.com
breach data data breach data security +15
FBI warns against using unlicensed crypto transfer services 2 days, 15 hours ago | www.bleepingcomputer.com
can crypto cryptocurrency down +13
LA County Health Services: Patients' data exposed in phishing attack 2 days, 16 hours ago | www.bleepingcomputer.com
attack breach data data breach +14
LA County Health Services: Patients' data exposed in phishing attack 2 days, 16 hours ago | www.bleepingcomputer.com
attack breach care data +21
Researchers sinkhole PlugX malware server with 2.5 million unique IPs 2 days, 17 hours ago | www.bleepingcomputer.com
addresses command command and control connections +11

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Officer Hospital Laguna Beach

@ Allied Universal | Laguna Beach, CA, United States
View on infosec-jobs.com

Sr. Cloud DevSecOps Engineer

@ Oracle | NOIDA, UTTAR PRADESH, India
View on infosec-jobs.com

Cloud Operations Security Engineer

@ Elekta | Crawley - Cornerstone
View on infosec-jobs.com

Cybersecurity – Senior Information System Security Manager (ISSM)

@ Boeing | USA - Seal Beach, CA
View on infosec-jobs.com

Engineering -- Tech Risk -- Security Architecture -- VP -- Dallas

@ Goldman Sachs | Dallas, Texas, United States
View on infosec-jobs.com
View more jobs