\n<\/p>\n
HONG
Black Hat USA<\/a>\u00a0is
Multiple 0-Day
Ten years ago, the Stuxnet worm used a Windows Printer Spooler privilege
\u00a0<\/p>\n
Sangfor Discovers Hundreds of
Windows
\u00a0<\/p>\n
Sangfor
Experienced security teams
\nKONG SAR –\u00a0Media
\nOutReach<\/a>\u00a0– 28 June 2021 –\u00a0Black Hat USA
\n2021 kicks off on July 31st<\/sup>, bringing together the world’s most
\ncutting-edge security researchers for a week of security demonstrations and
\ninformation sharing. Competition to present is fierce, with only the most
\nunique research highlighted. Sangfor<\/a> Security Team is proud to be presenting two
\nstudies to the world’s top security experts and researchers.<\/p>\n
\nthe largest and most authoritative source for security trends. Two Sangfor studies were selected from thousands submitted for presentation: “<\/i> Diving
\nInto Spooler: Discovering LPE and RCE Vulnerabilities in Windows Printer<\/i><\/a>” and “<\/i>Exploiting
\nWindows COM\/WinRT Services<\/i><\/a>” <\/i>with Sangfor researchers Zhiniang Peng, Xuefeng Li and Lewis Lee presenting.\u00a0 These presentations
\nshowcase previously unknown or zero-day privilege escalation (LPE) and remote
\nexecution (RCE) vulnerabilities. Hackers exploit LPE and RCE vulnerabilities to
\ngain administrative access for stealing data, installing ransomware, or to
\nattack other systems. \u00a0Zero-day
\nvulnerabilities greatly increases risk from LPE and RCE vulnerabilities because
\nyou cannot protect against what you do not know.<\/p>\n
\n
<\/p>\n
\nVulnerabilities Found in Spooler<\/b><\/p>\n
\n
<\/p>\n
\nupgrade vulnerability to destroy Iran’s nuclear enrichment centrifuges, and
\ninfect more than 45,000 networks, crippling Iran’s nuclear facilities. \u00a0Sangfor researchers discovered multiple, new 0-day
\nvulnerabilities within Spooler, all detailed in their upcoming presentation at
\nthe Black Hat conference.<\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\nWindows COM\/WinRT Vulnerabilities<\/b><\/p>\n
\n
<\/p>\n
\nCOM\/WinRT components are a basic part of Windows 10 Universal Windows Platform
\n(UWP) applications, widely used for cross-process communication. Security
\nvulnerabilities in these components means Windows systems would be exposed to many
\ndifferent types of attack. Sangfor researchers discovered more than 100
\nvulnerabilities in Windows COM\/WinRT services.<\/p>\n
\n
<\/p>\n
\n
<\/p>\n
\nBlueOps Team<\/b><\/p>\n
\n
<\/p>\n
\nare the most coveted in cyber security now, keeping up with the constant flow
\nof new cyber threat and ensuring enterprises have the tools they need to
\nrespond effectively. Sangfor BlueOps, Sangfor’s highly skilled defensive security
\ntest or blue team, works to improve attack detection and defence of Sangfor’s security
\nsolutions. They hunt threats daily to identify dangers from hacking groups and their
\nsoftware then develop effective response methods against them. <\/p>\n
\n
<\/p>\n