QakBot attacks with Windows zero-day (CVE-2024-30051) | allinfosecnews.com

May 14, 2024, 5:20 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

In early April 2024, we decided to take a closer look at the Windows DWM Core Library Elevation of Privilege Vulnerability CVE-2023-36033, which was previously discovered as a zero-day exploited in the wild. While searching for samples related to this exploit and attacks that used it, we found a curious document uploaded to VirusTotal on April 1, 2024. This document caught our attention because it had a rather descriptive file name, which indicated that it contained information about a …

april attacks closer cve cve-2023-36033 cve-2024 document elevation of privilege exploit exploited found in the wild library privilege qakbot virustotal vulnerability windows zero-day

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Malware development trick 41: Stealing data via legit VirusTotal API. Simple C example 51 minutes ago | malware.news

api attacker client computer +21

GitLab security advisory (AV24-355) an hour ago | malware.news

advisory article canadian canadian centre for cyber security +8

Protecting the Soft Underbelly of the Data Center an hour ago | malware.news

asset asset management center cis +24

Multiple vulnerabilities in TP-Link Omada system could lead to root access 3 hours ago | malware.news

access access points businesses cloud +25

Unique malware samples spike 3 hours ago | malware.news

article link malware media +2

US charges FIN9 hackers for hacking spree 3 hours ago | malware.news

article charges convicted fin9 +5

Malvertising campaign deploys Oyster backdoor via trojanized software installers 3 hours ago | malware.news

article backdoor binary campaign +13

Pegasus servers sequestered in Poland 3 hours ago | malware.news

abuse article commercial government +13

Attempted Russian interference in UK polls still low 3 hours ago | malware.news

article election election interference interference +11

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California

View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA

View on infosec-jobs.com

Account Executive - Secureworks Direct Sales - US Remote Philadelphia

@ Dell Technologies | Remote - Pennsylvania, United States

View on infosec-jobs.com

SATCOM Technician - Shariki, Japan - Secret Clearance (Onsite)

@ RTX | RVA99: RTN Remote, Virginia

View on infosec-jobs.com

Senior Test Engineer

@ Commonwealth Bank | Bengaluru - Manyata Tech Park Road

View on infosec-jobs.com

Lead Developer - Pipeline & Algorithms

@ Arctic Wolf | Waterloo

View on infosec-jobs.com