Navigate

Microsoft Fixes Serious Windows Vulnerability that was Identified Six Months Ago

Microsoft has recently patched a critical vulnerability, CVE-2024-21338, in Windows that permitted a user to acquire escalated privileges. Notably, it was reported that North Korean hackers of the Lazarus group exploited this flaw for several months. The issue surfaced around six months ago, according to security firm Avast.

The above-mentioned vulnerability was identified in the appid.sys driver of the AppLocker utility by Avast experts. The bug allowed hackers with access to the targeted system to elevate privileges to the level of SYSTEM without having to interact with the victim. Devices with Windows 11, Windows 10, Windows Server 2022, and Windows Server 2019 were affected by the issue.

According to Avast, the exploitation of vulnerability CVE-2024-21338 requires the hacker to be logged into the system, and then initiate a specially configured application that uses the vulnerability to seize control of the device. Although the patch for fixing the vulnerability was released in the middle of the last month, Microsoft only updated the support page information a few days ago, confirming that the vulnerability CVE-2024-21338 was in fact being exploited by hackers.

Avast has reported that the Lazarus group exploited this bug at least since August of last year. The hackers used it to gain kernel-level privileges and disable protective mechanisms on the targeted systems. They ultimately managed to covertly introduce the FudModule rootkit into the targeted systems to manipulate kernel objects.

This post was last modified on 03/11/2024

Windows
Julia Jackson: Hey there! I'm Julia Jackson, your friendly neighborhood tech geek, always navigating the exciting realms of technology with unbridled enthusiasm. Born and raised in the digital age, I've been on a relentless quest to understand and unravel the intricacies of the ever-evolving tech landscape. Hailing from a generation that witnessed the meteoric rise of the internet, I've been a digital native since the dial-up days. From the nostalgic hum of connecting to the World Wide Web to the lightning-fast speeds of today's fiber optics, I've witnessed and adapted to the digital evolution with a keen eye and a passion for all things tech. My love affair with technology goes beyond just using gadgets; I'm driven by an insatiable curiosity to understand the nuts and bolts that power our digital world. Whether it's coding languages, emerging technologies, or the latest in artificial intelligence, I'm always eager to delve deeper and unravel the mysteries that make our digital existence possible. Beyond my personal pursuits, I'm deeply committed to fostering a sense of community in the tech world. Whether through sharing knowledge on online forums, attending tech meetups, or mentoring aspiring techies, I believe in the power of collaboration and knowledge sharing to propel us all forward.
Related Post
  1. Hackers Breach Fujitsu – Customer Data Potentially Stolen
  2. The GhostRace vulnerability allows data theft from any modern x86, Arm, and RISC-V processor.
  3. Vulnerability Found in Intel’s Most Advanced Processors – Patches May Reduce Performance by up to 10%
  4. AI Chatbots found vulnerable to ASCII graphics
  5. Vulnerabilities discovered in ChatGPT plugins that allowed hacking of accounts on third-party platforms