Vicarius

I know what I'm watching this weekend 🍿

🦹♂️ Villain of the Week: System Seizer 🦹♂️ A recently disclosed vulnerability in the Windows Desktop Window Manager (CVE-2024-30051) is being actively exploited to gain SYSTEM privileges, allowing attackers to execute malicious code and elevate privileges. 🔓💻 Security Recommendation: - Install the latest security updates from Microsoft. - Equip yourself with robust system monitoring tools to detect any suspicious activity or unpatched vulnerabilities. - Detect with this script: https://lnkd.in/daGwTMkr We strongly recommend having a solution that can defend your systems. 🔧 This is what Vicarius vRx can do for you: - Real-time monitoring of active vulnerabilities 🕵️♂️ - Efficient patch management 🔄 - Complete set of detection, remediation and operations scripts 🛡️℞ For further guidance, please reach out to our support team ⛑️

There's something pretty neat happening at the end of the month and it starts with a W and ends with a REGISTER NOW 👇 https://lnkd.in/gysvZhyr 🦇 Sai Raj, Senior Director of IT & Security at New Jersey Innovation Institute 🦸♂️ Ryan Patton, Solution Architecture Team Leader at Vicarius

Is this the new security architect appreciation anthem?? 🤔 That Gilfoyle sample goes hard though ngl

We’re excited to announce the newest members joining us at Vicarius! 👏 Each brings their own expertise and passion, ready to help us push boundaries and solve the toughest challenges in cybersecurity. We can’t wait to see the incredible things they’ll achieve diving into the world of vulnerability management with us. Let’s make great things happen together! 💥 👋 A warm welcome to Jonatan Diaz Forero, Wendy Wang, Mark Chan, Anna Krupnik, Yaroslav Halindzovskyi, Noe Linares Here’s to new beginnings and even bigger successes ahead! 🥂 #lifeatvicarius #newcomers #welcome

Sometimes I lie awake at night wondering how deep, how technical, how thorough a CVE analysis can be. Then I woke up today to find this heap-based buffer overflow in Sudo. I'm pretty sure this researcher has a background in genetics because the code analysis is that of a molecular biologist 👨🔬🔬

David is back from vacation and returns to his hosting duties! Deli owner Don Donny joins the show to talk Haliburton cyber attack, Secure Boot issue affecting Linux users, a new Linux malware called "sedexp", and the arrest of Telegram CEO Pavel Durov. Thanks Daniel Stein for the research! 🤝

🦹♂️ A wild Mr. Plague Plugin has appeared! 🦹♂️ CVE-2024-5932 is a critical vulnerability in the GiveWP plugin that allows unauthenticated attackers to exploit PHP Object Injection, giving them the ability to execute remote code and delete arbitrary files. Without immediate patching, attackers could gain unauthorized access, compromising sensitive data, including donor information. 👨💻 Who's at risk? All sites running the GiveWP plugin version 3.14.1 and earlier are vulnerable. The issue has been resolved in version 3.14.2 and beyond, so ensure you’re running the latest version to stay protected. 📋 Actions to take: Patch Immediately: Ensure that the GiveWP plugin is updated to version 3.14.2 or later. Monitor Regularly: Use tools to monitor plugin updates and security patches for all installed plugins. 🧰 Use these scripts: Detection script:  https://lnkd.in/gSue7wNB Remediation script: https://lnkd.in/gKWJuznT Shoutout to Villu Orav for the discovery!

In this clip, Kamilló Matek shares the story behind his Mercusys router 3-part analysis, which to this day reigns as one of the most comprehensive breakdowns in vsociety history. 🏆 He also mentions how his site visitors increased after the publication, echoing a sentiment we crafted from the beginning: researchers getting their time in the spotlight! 🤩

We are incredibly amped to host this webinar and live Q&A featuring IT pro Sai Raj and moderated by our very own Ryan Patton. Sai will take us into the driver's seat of an SMB as we learn how they navigate the treacherous road of modern cyber threats—and the strategies for how to prioritize and manage risk. 📅 Save the date! 📅 September 26, 1:00pm ET