PwnKit Vulnerability
Researches at Qualys have discovered a local privilege escalation vulnerability in all distributions of Linux. This vulnerability appears to be trivial to exploit, though it does require some level of “local” access (could potentially be used with SSH or other remote-control methods) for execution.
Proof of Concept exploits have been developed and released. Exploitation is likely at this point. Patches have been released and should be applied.
FBI Warns of Kali365 phishing service targeting Microsoft 365 accounts Article Link: https://www.bleepingcomputer.com/news/security/fbi-warns-of-kali365-phishing-service-targeting-microsoft-365-accounts/ ChatGPT Share Links Abused to Host Fake Outage Pages to Deliver Malware
Ivanti Warns of New EPMM Flaw Exploited in Zero-Day Attacks Article Link: https://www.bleepingcomputer.com/news/security/ivanti-warns-of-new-epmm-flaw-exploited-in-zero-day-attacks/ RubyGems Suspends New Signups After Hundreds of Malicious Packages Are Uploaded Article
