PwnKit Vulnerability
Researches at Qualys have discovered a local privilege escalation vulnerability in all distributions of Linux. This vulnerability appears to be trivial to exploit, though it does require some level of “local” access (could potentially be used with SSH or other remote-control methods) for execution.
Proof of Concept exploits have been developed and released. Exploitation is likely at this point. Patches have been released and should be applied.
CISA Urges US Orgs to Secure Microsoft Intune Systems After Stryker Breach Article Link: https://www.bleepingcomputer.com/news/security/cisa-warns-businesses-to-secure-microsoft-intune-systems-after-stryker-breach/ The Industrialization of Identity Compromise: How Attackers Are Scaling Faster
MedTech Giant Stryker Crippled by Iran-Linked Hacker Attack Article Link: https://www.securityweek.com/medtech-giant-stryker-crippled-by-iran-linked-hacker-attack/ ShinyHunters Claims Ongoing Salesforce Aura Data Theft Attacks Article Link: https://www.bleepingcomputer.com/news/security/shinyhunters-claims-ongoing-salesforce-aura-data-theft-attacks/ Attackers Don’t Just
