Tech
Black Basta Exploits Microsoft Zero-Day After Patch | JD Supra
It is being reported that Black Basta (aptly named) exploited a Microsoft zero-day prior to Microsoft’s release of a patch for the vulnerability back in March.
The vulnerability, CVE-2024-26169, was on Microsoft’s March update’s Patch Tuesday List. Unpatched, it allows the threat actor to escalate privileges. Symantec’s threat hunter team has discovered that Black Basta was able to gather information on the vulnerability prior to the patch and use it recently in attacks against victims. This means that even if an organization applied the patch, Black Basta may be able to exploit the vulnerability anyway.
It is essential for organizations to apply patches for vulnerabilities in a timely manner. Unfortunately, this research indicates that even if you do so, the threat actors may have already figured out how to exploit the vulnerability to use it against companies after the fact to render the vulnerability a zero-day again. Patch, patch, patch. There’s no way around it, and it is more important than ever. Patch this vulnerability to avoid Black Basta—trust me—they are a bunch of bastas.
[View source.]
From Stadium to Screen: How Technology is Changing Sports Viewing
20/7/2024 Horse Racing Tips and Best Bets – Flemington, Flemington Cup day
Indian tech hub Karnataka state’s move to reserve jobs for locals not finalised, chief minister says
Financial picture dramatically improves for Shamrock Rovers in 48 hours with Sinclair Armstrong deal and European win
Our fashion editor’s favourite affordable bag is 20% off today
Jay Shah’s Big Decision Hovers Over Cricket’s Associate Member Directors Election
Budget shampoo that adds MAJOR volume boost is on sale for Amazon Prime Day: ‘Your hair feels fuller and thicker’
Being active on your commute lowers risk of disease and mental health
Tiger Woods cops brutal Open schedule as full Round 1 tee times revealed
