Windows – Page 52 – MCYSEKA-Maritime Cyber Security Knowledge Archive

Realtek PCIe GbE Family Controller Driver: How to Download and Update

Key TakeawaysRealtek PCIe GbE Family Controller Driver is essential for internet connection via LAN cable on Windows PC. Updating this driver ensures proper Ethernet functionality.Ways to update the driver include using Windows Update, Device Manager, Realtek’s website, third-party software like Driver Booster, and the laptop manufacturer’s website.By following these steps, users can easily download and […]

The post Realtek PCIe GbE Family Controller Driver: How to Download and Update appeared first on iTech Hacks.

March 20, 2025

0 comment

Microsoft Developing Windows 11 Feature To Explain Hardware Performance Issues

Microsoft is developing a new Windows 11 feature that will explain how hardware limitations affect PC performance. The latest preview builds include a hidden FAQ section in system settings that addresses GPU memory, system RAM, and OS version impacts. …

March 20, 2025

0 comment

11 Nation-State Hackers Exploit Unpatched Windows Flaw Since 2017

Microsoft refuses to patch serious Windows shortcut vulnerability abused in global espionage campaigns!

March 19, 2025

0 comment

Microsoft Windows NTLM File Explorer Vulnerability Exploited in The Wild – PoC Released

A significant vulnerability in Microsoft Windows File Explorer, identified as CVE-2025-24071, has been discovered and is being actively exploited in the wild. This vulnerability allows attackers to capture NTLM hashes, potentially leading to network sp…

March 19, 2025

0 comment

APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373)

State-sponsored threat actors and cybercrime groups from North Korea, Iran, Russia, and China have been exploiting a zero-day Windows vulnerability with no fix in sight for the last eight years, researchers with Trend Micro’s Zero Day Initiative …

March 19, 2025

0 comment

MirrorFace Hackers Modify AsyncRAT Execution for Stealthy Deployment in Windows Sandbox

In a significant development, the China-aligned advanced persistent threat (APT) group known as MirrorFace has been observed employing sophisticated tactics to enhance the stealthiness of its attacks. Recently, MirrorFace modified the execution of Asyn…

March 19, 2025

0 comment

11 State-Sponsored Threat Actors Exploit 8-Year-Old Windows Shortcut Flaw

Cybersecurity researchers have discovered that multiple state-sponsored threat actors have been exploiting an eight-year-old vulnerability in Windows shortcut files. This security flaw, identified as ZDI-CAN-25373, allows malicious actors to embed hidd…

March 19, 2025

0 comment

Stealthy StilachiRAT steals data, may enable lateral movement

While still not widely distributed, a new Windows remote access trojan (RAT) dubbed StilachiRAT is a serious threat. “[The malware] demonstrates sophisticated techniques to evade detection, persist in the target environment, and exfiltrate sensit…

March 18, 2025

0 comment

Huawei To Pivot To Linux, HarmonyOS as Microsoft Windows License Expires

Huawei will no longer be able to produce or sell Windows-based PCs as Microsoft’s supply license to the Chinese tech company expires this month, according to Chinese tech site MyDrivers. The restriction comes as Huawei remains on the U.S. Department of…

March 17, 2025

0 comment

Hack The Box: Certified Machine Walkthrough – Medium Difficulty

Access is gained using Judith Mader’s credentials, allowing enumeration of network resources. CrackMapExec identifies key accounts like management_svc and ca_operator. Privilege escalation is performed using a Shadow Credentials attack with Certipy, taking control of management_svc. With valid credentials, Evil-WinRM establishes a remote session, leading to the user flag.

For root access, the attack exploits Active Directory Certificate Services by modifying ca_operator’s User Principal Name (UPN) to Administrator, enabling a privileged certificate request. A vulnerable ESC9 certificate is issued without linking back to ca_operator, effectively granting Administrator access. The UPN is restored to avoid detection, and authentication via Kerberos retrieves the NT hash of the Administrator account. Full system control is confirmed by obtaining the root flag.

#HackTheBox #Pentesting #ActiveDirectory #PrivilegeEscalation #CyberSecurity #EthicalHacking

The post Hack The Box: Certified Machine Walkthrough – Medium Difficulty appeared first on Threatninja.net.

March 15, 2025

0 comment

1 … 50 51 52 53 54 … 83

M	T	W	T	F	S	S
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

M	T	W	T	F	S	S
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31