Tuesday, July 14, 21:06
Home security Windows 7 / 8 / 8.1 / 10 are at Risk from Hot Potato exploit!

Windows 7 / 8 / 8.1 / 10 are at Risk from Hot Potato exploit!

Windows 7 / 8 / 8.1 / 10 are at risk from Hot Potato exploit !

The versions of Windows 7, 8, 10, Server 2008, and 2012 Server are vulnerable to Hot Potato exploit, which allows hackers to gain full control of a PC or laptop.

Windows 7 / 8 / 8.1 / 10 are at Risk from Hot Potato exploit!

Security researchers from Foxglove Security have discovered that virtually all recent versions of Microsoft's Windows operating system are vulnerable to an escalation exploit privilege.

By linking a series of known Windows security blanks, Foxglove Security researchers have discovered a way to invade PCs / systems / laptops running Windows 7 / 8 / 8.1 / 10 and Windows Server 2008 / 2010.

https://www.secnews.gr/100620/iphone-crash/Δείτε ακόμα: ΠΡΟΣΟΧΗ! Κυκλοφορεί Link που Crashάρει & κάνει Reboot το iPhone σας!

Foxglove researchers have named exploit 'Hot Potato'. Hot Potato is based on three different types of attacks, some of which have been discovered far back ... at the beginning of the new millennium, 2000. By linking this together, hackers can gain remote access to PCs / laptops that run the above versions of Windows.
Surprisingly, some of the exploits found in 2000 have not yet been repaired by Microsoft on the grounds that by repairing them, the company will break compatibility between different versions of the operating system.

Hot Potato is a set of three different security issues for the Windows operating system. One of the flaws is a local NBNS (NetBIOS Name Service) spoofing technique that is 100% effective. Potential hackers can use this flaw to create fake WAP (Proxy Auto-Discovery Protocol) proxy servers, and an NTLM authentication protocol against Windows NTLM.

Exploiting these exploits in a chained way allows hackers to gain access to the PC / laptop by upgrading and acquiring the rights of an application from the lowest rank to system-level privileges.

https://www.secnews.gr/100636/skype-finally-hides-users-ip-address/btn-large” variation=”btn-info”]Διαβάστε επίσης: To Skype επιτέλους κρύβει τις διευθύνσεις IP των χρηστών του!

Foxglove researchers created their exploit on a proof-of-concept code released by 2014 from the Google Project Zero team and presented their findings at the ShmooCon security conference last weekend.
They also have proof-of-concept videos on YouTube that seem to break the Windows 7, 8, 10, 2008, and 2012

You can enjoy them:

[su_youtube url = ”https://youtu.be/Nd6f5P3LSNM” width = ”580 ″ height =” 380 ″]

[su_youtube url = ”https://youtu.be/z_IGPWgL5SY” width = ”580 ″ height =” 380 ″]

[su_youtube url = ”https://youtu.be/Kan58VeYpb8 ″ width =” 580 ″ height = ”380 ″]

LEAVE ANSWER

Please enter your comment!
Please enter your name here

LIVE NEWS

Spotify: Finally reshaping its podcast charts

Spotify is reshaping its podcast charts to help listeners find new shows and watch local news ...
00:04:13

Find out if you have been hacked and what to do about it

Hacking attacks are a daily occurrence with many victims worldwide. Everyone is vulnerable to cyber hackers, but the threats do not ...

ISIS accounts continue Facebook propaganda

According to a new research, some accounts connected to the terrorist group ISIS, still exist on Facebook, without becoming ...

US and UK: Dealing with major cyber attacks

The United States, the United Kingdom, India and Germany have experienced many "significant" cyber attacks over the past 14 years, ...

Google Meet: New security settings for training meetings

New security features are coming into the Google Meet video chat app for education subscribers' teleconferencing.

Technology companies against the deportation of foreign students from the USA!

Technology giants such as Google, Microsoft and Facebook, as well as many other technology companies, have joined the US Chamber of Commerce, ...

Microsoft announces new features in ATP for Azure Storage!

Microsoft announced today that Advanced Threat Protection (ATP) for Azure Storage now enables customers to protect ...

The UK is on the alert for cyber attacks from China

The United Kingdom must be vigilant about possible cyber attacks by countries such as China, government ministers have said.

Linux 5.8-rc5: Will be released with terminology changes

On July 4, Dan Williams proposed changing the special terms of Linux, with new names ...

Belgium: Jackpotting attack on Argenta bank ATM

Argenta Bank, based in Antwerp, Belgium, has been the victim of a jackpotting attack. Is...