BYOVDLL – A New Exploit That Is Bypassing LSASS Protection

14 August 2024

In July 2022, Microsoft patched a well-known PPL bypass flaw, initially discovered by Ionescu and Forshaw. This allowed protection circumvention without kernel code execution, and this update now broke the PPLdump PoC. SCRT Team researchers at Orange Cyberdefense recently discovered a new exploit that enables threat actors to bypass LSASS protection.

Source: GBHackers

Date:

14 August 2024

Categorie(s):

NEWS

Tag(s):

Is, New, Protection, Security Pro, Windows Security

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released16 November 2024
Warning: DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials16 November 2024
Swiss cheesed off as postal service used to spread malware16 November 2024
Bloke behind Helix Bitcoin launderette jailed for three years, hands over $400M16 November 2024
Letting chatbots run robots ends as badly as you’d expect16 November 2024