Privilege Escalation

Critical OttoKit WordPress Plugin Vulnerabilities Under Active Attack WordPress DollyWay Malware OttoKit vulnerability

WordPress DollyWay Malware OttoKit vulnerability

Critical OttoKit WordPress Plugin Vulnerabilities Under Active Attack

Do Son May 9, 2025

The OttoKit plugin for WordPress—installed on over 100,000 websites—has come under widespread attack exploiting two vulnerabilities, one...

ConfusedComposer: GCP Flaw Allowed Privilege Escalation via Cloud Composer

ConfusedComposer

ConfusedComposer: GCP Flaw Allowed Privilege Escalation via Cloud Composer

Do Son April 24, 2025

The ConfusedComposer vulnerability, uncovered by researchers at Tenable, stands as yet another illustration of how the internal...

Windows Task Scheduler Flaws Allow Privilege Escalation, Log Tampering priv

priv

Windows Task Scheduler Flaws Allow Privilege Escalation, Log Tampering

Do Son April 18, 2025

Four newly discovered vulnerabilities have been identified in one of Windows’ core components—the Task Scheduler—enabling local privilege...

RansomEXX Exploits Windows CLFS Zero-Day to Escalate Privileges readme

readme

RansomEXX Exploits Windows CLFS Zero-Day to Escalate Privileges

Do Son April 9, 2025

Microsoft has reported that the ransomware group RansomEXX is actively exploiting a critical zero-day vulnerability in the...