Advanced Threat Operations – Page 2

Sudo chroot elevation of privilege

Veronica Garcia June 30, 2025 No Comments

Stratascale’s Cybersecurity Research Unit (CRU) has identified a critical local privilege escalation vulnerability in Sudo (CVE-2025-32463). This flaw, tied to the chroot feature, allows any local unprivileged user to gain…

The power of CTEM & how to take advantage of it

Veronica Garcia June 26, 2025 No Comments

Traditional security tools and annual pentests can’t keep up. Continuous Threat Exposure Management (CTEM) delivers real-time visibility and risk-based prioritization to outpace attackers. Learn how CTEM turns reactive security into…

Ubuntu apport insecure file permissions

Veronica Garcia June 12, 2025 No Comments

Stratascale’s Cybersecurity Research Unit (CRU) discovered an information disclosure vulnerability in Ubuntu’s Apport crash reporting system (CVE-2025-5467). Improper file permissions allowed users in the same group to access sensitive crash…

Osquery component bundled with Microsoft Defender for Endpoint on Linux

Veronica Garcia May 27, 2025 No Comments

Stratascale's Cybersecurity Research Unit (CRU) discovered a local privilege escalation flaw in Microsoft Defender for Endpoint on Linux (CVE-2025-47161). The Osquery component allowed unprivileged users to gain root access. Microsoft…

Microsoft Defender for Endpoint on Linux elevation of privilege

Veronica Garcia May 13, 2025 No Comments

Stratascale's Cybersecurity Research Unit (CRU) recently discovered an elevation of privilege vulnerability in Microsoft Defender for Endpoint on Linux and disclosed the vulnerability to the Microsoft Security Response Center (MSRC)…

2025 success guide

Veronica Garcia January 21, 2025 No Comments

Delve into this guide for actionable ways to equip your security team with the necessary knowledge and tools to turn cybersecurity into a strategic advantage and position your organization for…

Protecting your organization from AI-enabled cyber threats

Veronica Garcia December 19, 2024 No Comments

AI-enabled cyber threats are reshaping cybersecurity by enhancing phishing, enabling deepfakes, and automating malware, leading to more sophisticated and scalable attacks. Find out how you can fortify your defenses against…

Continuous penetration testing is your new offensive weapon

Veronica Garcia October 25, 2024 No Comments

The cybersecurity battlefield demands more than outdated defenses. Static \"point-in-time\" penetration testing isn't enough to combat today's sophisticated threats—it's like bringing a knife to a gunfight. Find out how continuous…

Don’t ignore attack surface during M&A

Veronica Garcia February 28, 2024 No Comments

Why you want to assess an organization’s attack surface before you integrate or take ownership.

AI at machine speed: Why continuous threat exposure management is now a business imperative

AI agents with access to your bank account and credit card could cause chaos

The house sitter problem: Why AI agents still have the keys

Cognitive warfare in OT security: The hidden risk

Resource Topic: Advanced Threat Operations

Sudo chroot elevation of privilege

The power of CTEM & how to take advantage of it

Ubuntu apport insecure file permissions

Osquery component bundled with Microsoft Defender for Endpoint on Linux

Microsoft Defender for Endpoint on Linux elevation of privilege

2025 success guide

Protecting your organization from AI-enabled cyber threats

Continuous penetration testing is your new offensive weapon

Don’t ignore attack surface during M&A