Date: October 6, 2024 Author: Threat Intelligence Desk
The first 0day of the week was reported by Microsoft's Threat Intelligence Center (MSTIC) on October 2nd. Exploitation chains observed in the wild used a malicious printer driver to escape Low Integrity Level sandboxes. The key nuance? This 0day bypassed Patch Tuesday’s August mitigations for a related bug (CVE-2024-38124). 0day and hitlist week 01102024 work
The Hitlist Connection: This 0day was immediately added to several hitlists targeting US healthcare providers still running legacy ERP portals. Date: October 6, 2024 Author: Threat Intelligence Desk
Traditionally, an attacker finds a target, then finds an exploit. In week 01102024, the pattern reversed. Attackers obtained a (a set of high-value targets), then specifically searched for 0days that were present in the tech stacks of those targets. Date: October 6