Open in app
Home
Notifications
Lists
Stories

Write
Sushant Paithane
Sushant Paithane

Home

Published in Confluera Engineering

·Feb 1

Pwning the Pwnkit with Confluera

Recently reported CVE-2021–4034 is a vulnerability in pkexec tool from polkit. pkexec is prebuilt into a typical Linux system and is one of the binaries that can elevate privileges to root (using setuid/setgid). Being a common utility, polkit is present on several Linux distributions. Docker containers images also ship with…

Cybersecurity

3 min read

Pwning the Pwnkit with Confluera
Pwning the Pwnkit with Confluera

Published in Confluera Engineering

·Jul 22, 2021

Analysis of REvil Ransomware Attack

Followed by the Solarwinds attack, another supply chain compromise has hit the enterprises during the July 4th holiday weekend. Kaseya MSP — a remote IT management service provider — was compromised to deliver REvil/Sodinokibi ransomware. This attack makes 2021 a big year for such supply chain based attacks. Although initial…

Ransomware

6 min read

Kaseya: Revil Ransomware Attack
Kaseya: Revil Ransomware Attack

Published in Confluera Engineering

·Apr 19, 2021

Exchange Server Attacks — A recurring story

Zero day vulnerabilities in Microsoft Exchange server have had a widespread impact in March 2021. The attacks were initially attributed to the Hafnium group but now multiple threat actors are leveraging these vulnerabilities. Recently, four new Exchange server vulnerabilities were revealed by NSA and MSRC. The Vulnerabilities In March 2021, one vulnerability…

Confluera

5 min read

Exchange Server Attacks — A recurring story
Exchange Server Attacks — A recurring story
Sushant Paithane

Sushant Paithane

Security Researcher

Following
  • Nmukherj

    Nmukherj

  • Nasreddine Bencherchali

    Nasreddine Bencherchali

  • Mehmet Ergene

    Mehmet Ergene

  • Matt Fuller

    Matt Fuller

  • Joel Schopp

    Joel Schopp

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Knowable