Privilege Escalation

One-Click Domain Admin: SharpSuccessor PoC Exploits Critical BadSuccessor Flaw

2 min read

• Security

One-Click Domain Admin: SharpSuccessor PoC Exploits Critical BadSuccessor Flaw

Do Son May 28, 2025

A fully functional exploit tool has been released for the previously discovered critical vulnerability in Windows Server...

Read More Read more about One-Click Domain Admin: SharpSuccessor PoC Exploits Critical BadSuccessor Flaw

Windows Server 2025 Flaw (BadSuccessor) Exposes Active Directory Accounts

2 min read

• Security

Windows Server 2025 Flaw (BadSuccessor) Exposes Active Directory Accounts

Do Son May 24, 2025

A critical vulnerability has been discovered in Windows Server 2025, enabling threat actors to escalate privileges and...

Read More Read more about Windows Server 2025 Flaw (BadSuccessor) Exposes Active Directory Accounts

Cloud Alert: AWS Default Policies Pose Privilege Escalation Risk

2 min read

• Security

Cloud Alert: AWS Default Policies Pose Privilege Escalation Risk

Do Son May 23, 2025

Experts have uncovered significant risks linked to default access policies within Amazon Web Services’ cloud infrastructure. These...

Read More Read more about Cloud Alert: AWS Default Policies Pose Privilege Escalation Risk

CISA Warns: Actively Exploited Windows Zero-Days Added to KEV Catalog

2 min read

• Security

CISA Warns: Actively Exploited Windows Zero-Days Added to KEV Catalog

Do Son May 17, 2025

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has expanded its Known Exploited Vulnerabilities (KEV) catalog, adding...

Read More Read more about CISA Warns: Actively Exploited Windows Zero-Days Added to KEV Catalog

One-Click to Admin Access: Critical ASUS Driver Flaw Exposed

3 min read

• Security

One-Click to Admin Access: Critical ASUS Driver Flaw Exposed

Do Son May 13, 2025

A user who had purchased an ASUS motherboard discovered that the driver installation software—automatically triggered via the...

Read More Read more about One-Click to Admin Access: Critical ASUS Driver Flaw Exposed

Critical OttoKit WordPress Plugin Vulnerabilities Under Active Attack

2 min read

• Security

Critical OttoKit WordPress Plugin Vulnerabilities Under Active Attack

Do Son May 9, 2025

The OttoKit plugin for WordPress—installed on over 100,000 websites—has come under widespread attack exploiting two vulnerabilities, one...

Read More Read more about Critical OttoKit WordPress Plugin Vulnerabilities Under Active Attack

ConfusedComposer: GCP Flaw Allowed Privilege Escalation via Cloud Composer

2 min read

• Security

ConfusedComposer: GCP Flaw Allowed Privilege Escalation via Cloud Composer

Do Son April 24, 2025

The ConfusedComposer vulnerability, uncovered by researchers at Tenable, stands as yet another illustration of how the internal...

Read More Read more about ConfusedComposer: GCP Flaw Allowed Privilege Escalation via Cloud Composer

Windows Task Scheduler Flaws Allow Privilege Escalation, Log Tampering

2 min read

• Security
• Windows

Windows Task Scheduler Flaws Allow Privilege Escalation, Log Tampering

Do Son April 18, 2025

Four newly discovered vulnerabilities have been identified in one of Windows’ core components—the Task Scheduler—enabling local privilege...

Read More Read more about Windows Task Scheduler Flaws Allow Privilege Escalation, Log Tampering

RansomEXX Exploits Windows CLFS Zero-Day to Escalate Privileges

2 min read

• Security

RansomEXX Exploits Windows CLFS Zero-Day to Escalate Privileges

Do Son April 9, 2025

Microsoft has reported that the ransomware group RansomEXX is actively exploiting a critical zero-day vulnerability in the...

Read More Read more about RansomEXX Exploits Windows CLFS Zero-Day to Escalate Privileges