Security researchers have discovered a Windows zero-day vulnerability that is going for $90,000 on the underground cyber crime market. A post from a cyber criminal on an underground forum, claims to have this vulnerability which could affect almost all Windows users. If the claims are true, the local privilege escalation vulnerability exists in all versions of Microsoft Windows OS starting from Windows 2000, potentially impacting over 1.5 billion Windows users.
Oliver Pinson-Roxburgh, SE director EMEA at Alert Logic: "Organisations today cannot rely on the vendor to secure them, they need to be in a position to detect threats before they are really know. If organisations are monitoring access to systems as well as deviations from the norm they will detect this even without having specific security tooling to protect against The challenge is that many clients just don't have the time and resource to watch for this escalation of privileges."
Simon Crosby, CTO and o-founder at Bromium:
"The zero-day market remains strong--which means that researchers are confident that there are many more such vulnerabilities they can quickly monetise. Of course, today's detect-to protect products such as "next-gen AV will fail to detect attacks that leverage this or any other new techniques to breach the endpoint. The only way forward is for organisations to adopt a security posture that isolates all untrusted computation by default making endpoints secure by design. For Bromium customer Valspar, this is vital to the way that they protect their users--and their intellectual property--when their users travel to offshore manufacturing facilities."
Robert Simmons, Director of Research Innovation at ThreatConnect:
"Whether or not this vulnerability turns out to be real or a hoax, all vulnerabilities, 0-day or not are a problem if systems are not kept up to date with patches. Staying up to date with software and operating system patches is one of the...