0-days found in Symantec Endpoint Protection
Posted on 30 July 2014.
While testing of the systems and networks of a financial services company, a team of penetration testers from Offensive Security have unearthed a number of vulnerabilities, including three privilege escalation zero-day bugs affecting Symantec Endpoint Protection, the firm's security software of choice.

"Ironically, the same software that was meant to protect the organization under review was the reason for its compromise," they noted, and posted a video demonstrating the exploitation of a 0-day in the security solution.

The biggest irony is that Symantec Endpoint Protection, among other things, aims to protect users against zero-day attacks.

The company has shared information about some of the found vulnerabilities with CERTs, but others will be studied during the company's Advanced Windows Exploitation (AWE) course next week at the Black Hat 2014 conference.

According to Jeremy Kirk, Symantec has also been made aware of the existence of these flaws and they are looking into the matter.

As Joxean Koret, a researcher with Singapore-based Coseinc, has recently noted, installing any application on your computer makes you a bit more vulnerable, and that includes security software.

Your attacks surface increases, and there is no guarantee that the security application itself does not have more or less critical security flaws that can be exploited. Security software is as vulnerable to attacks as any other application, he says, adding that he found that some security solutions can also lower the operating system exploiting mitigations.


Email scammers stole $215M from businesses in 14 months

Posted on 29 January 2015.  |  In 14 months there have been nearly 1200 US and a little over 900 non-US victims of BEC scams, and the total money loss reached nearly $215 million.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Jan 30th