Snynet Solution Logo
MON - SUN: 10 AM - 6 PM
+60 11 5624 8319

Blog

There's yet another new PrintNightmare hack

Image Description

The PrintNightmare vulnerability is living up to its name with another cybersecurity researcher exploiting the bug in a privilege escalation attack.

PrintNightmare created havoc when it was accidentally disclosed by Chinese security researchers who put out a proof-of-concept exploit thinking the vulnerability in Windows Print Spooler had already been patched by Microsoft, which pushed the company to put out a new patch to address the remote code exploitation (RCE) vulnerability as well.

Now, Benjamin Delpy, creator of popular post exploitation tool Mimikatz, has found a way to exploit the vulnerability in the Windows Print Spooler to enable any user to gain admin privileges on a vulnerable computer.

TechRadar needs you!

We're looking at how our readers use VPNs with streaming sites like Netflix so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

>> Click here to start the survey in a new window

According to reports, Delpy’s workaround takes advantage of the fact that Windows doesn’t prevent Limited users from installing printer drivers. Furthermore, it won’t complain when these drivers are fetched from remote print servers, and will then run them with the System privilege level. 

No end to the abuse

After issuing an out-of-band update, Microsoft also included the PrintNightmare patch in its July Patch Tuesday.

Notably, a section of security researchers, including Delpy, had raised concerns about the patch arguing that it’s how Microsoft checks for remote libraries in the PrintNightmare patch that offers an opportunity to work around the patch.

In a tweet, Delpy mentioned that PrintNightmare has taught him “a lot about printer spooler & drivers (even how to build and sign them).”

He’s put all his learnings into action by demonstrating a proof-of-concept (PoC) that downloads a rogue driver that misuses the latitude it’s given by Windows to eventually fire up a system prompt even for a user with a limited access account. 

Speaking to Bleeping Computer, Delpy shared that we haven’t seen the last of Windows print spooler abuse, pointing to a couple of upcoming sessions at DefCon and Black Hat conferences that will share new shortcomings and exploits.

Via BleepingComputer

Date

02 Aug 2021

Sources


Share


Other Blog

  • Apple introduces a fix for MacBook Pro notch haters

    The new MacBook Pro models with Mini-LED screens have run into further controversy around the notch, with Apple having to introduce what seems to be a quick workaround for apps that run into trouble with said notch.

    As spotted by @Jatodaro on Twitter, there are scenarios with some apps where details put in the top bar which runs alongside the notch, can actually end up being placed in the area where the notch is – where there’s no screen (just the webcam) – so these icons or options effectively disappear.

    See more

    The video embedded in the tweet shows the issue, and as @Jatodaro further elaborates, Apple has a solution – or rather what looks like a hastily applied band-aid. Users suffering at the hands of the notch obscuring details along the top can select the problematic app, choose ‘File’, then ‘Get Info’ and then the option to ‘Scale to fit below built-in camera’ as described in an Apple support document.

    This does exactly what it says, namely scales the desktop down so it fits under the notch and top bar, effectively making the top bezel larger – and not just the top bezel, but the side ones too. The whole desktop is scaled down, and this continues to be the case when running the app, even if it’s in the background, with things reverting to normal when the application in question (requiring the scaling) is closed.


    Analysis: No notch, but embiggened bezels

    With this fix from Apple, then, any issues around the notch obscuring options or content from apps can be side-stepped, but you’re obviously getting chunkier bezels all-round, making the MacBook look distinctly less nifty as a result. It’s not clear why Apple couldn’t plump for a more elegant solution whereby only the top menu bar was clipped off (rather than scaling the entire screen area down).

    However, the seemingly clunky nature of this solution may not really matter that much, given that very few apps will actually run into this problem. Apple likely views this as a simple stopgap measure that’ll only need to be employed in some very niche cases, and the firm expects devs to get around to updating affected macOS apps soon to cure any such notch collisions.

    As Apple states: “If a developer updates their app for compatibility with your Mac, the ‘Scale to fit below built-in camera’ setting no longer appears. You can contact the developer of the app to learn whether an update is available or planned.”

    This seems to be a roundabout way of saying get on these developers’ cases now, because this is something they need to sort out pronto.

    Naturally, this won’t help all the confusion and, in some cases, hatred springing up around the notch. As you may have seen earlier this week, some enterprising developers are already making apps specifically designed to hide the notch.

    As we’ve observed elsewhere, in a lot of ways all this controversy feels overblown, and the notch certainly didn’t blot the laptop landscape for us in the case of our glowing Apple MacBook Pro 14-inch (2021) review. Some folks, however, just can’t seem to get over the appearance of the notch and the apparent distraction and annoyance its simple presence causes them – and maybe, more to the point, they don’t find Apple’s explanation for why the notch was implemented satisfactorily.

    Via The Verge

    Read More
  • Mirai botnet now targeting critical flaw in thousands of routers

    Malware authors have quickly adapted attack strategy to target recently disclosed vulnerabilities in Realtek-powered devices.

    Read More
  • Researchers contradict AMD claims that SEV keys can't be extracted remotely

    Security researchers say the AMD attack described in their paper has serious real world implications.

    Read More
  • Azure may have finally toppled AWS in the global cloud battle

    As the cloud wars rage on, Microsoft Azure usage has finally surpassed that of AWS in several key areas according to a new report from Flexera.

    To compile its new Flexera 2022 State of the Cloud Report, the company surveyed 753 cloud decision makers and users from around the world last year to learn more about the public, private and multi-cloud market.

    According to the results of the survey, 80 percent of enterprises are using Azure compared to 77 percent that are using AWS. Microsoft's cloud computing service also surpassed AWS when it came to the number of virtual machines (VMs) enterprises are running with 71 percent running more than 51 VMs on Azure compared to 69 percent for AWS.

    At the same time, 53 percent of enterprise Azure users spend at least $1.2m annually compared with 52 percent for AWS. When it came to private clouds, Microsoft Azure Stack increased its market share slightly year-over-year to reach 37 percent and it replaced VMware vSphere (31%) at the top spot.

    Cloud spend and SMB cloud usage

    When asked about the top challenges for organizations of all sizes, the respondents in Flexera's survey said that security, managing cloud spend and lack of resources or expertise were the biggest hurdles that need to be overcome.

    Regarding cloud spend, organizations are over budget by an average of 13 percent and expect the amount they spend on cloud services to increase by 29 percent next year. Those surveyed also estimated that organizations waste 32 percent of their cloud budgets.

    Flexera's report also highlighted how cloud spend by SMBs reflected a massive update with 52 percent of SMBs (organizations with 1,000 or fewer employees) spent more than $1.2m annually on cloud services which is up by 38 percent when compared to last year.

    Senior director of cloud market strategy at Flexera, Brian Adler explained in a press release how cloud adoption was significantly accelerated as a result of the pandemic, saying:

    "To maintain their pace of digital transformation, organizations must have the cloud play a significant role in their strategy. The cloud helps enterprises scale, be more agile, increase revenue and achieve business goals. We've seen that cloud adoption has been expanding for the past few years, with a great acceleration by the pandemic. However, in the post-pandemic world that we're shaping, we're seeing new trends coming into focus."

    Read More

Find Out More About Us

Want to hire best people for your project? Look no further you came to the right place!

Contact Us