Open in app

Sign In

Write

Sign In

Sushant Paithane
Sushant Paithane

7 Followers

Home

About

Published in

Confluera Engineering

·Feb 1, 2022

Pwning the Pwnkit with Confluera

Recently reported CVE-2021–4034 is a vulnerability in pkexec tool from polkit. pkexec is prebuilt into a typical Linux system and is one of the binaries that can elevate privileges to root (using setuid/setgid). Being a common utility, polkit is present on several Linux distributions. Docker containers images also ship with…

Cybersecurity

3 min read

Pwning the Pwnkit with Confluera
Pwning the Pwnkit with Confluera
Cybersecurity

3 min read


Published in

Confluera Engineering

·Jul 22, 2021

Analysis of REvil Ransomware Attack

Followed by the Solarwinds attack, another supply chain compromise has hit the enterprises during the July 4th holiday weekend. Kaseya MSP — a remote IT management service provider — was compromised to deliver REvil/Sodinokibi ransomware. This attack makes 2021 a big year for such supply chain based attacks. Although initial…

Ransomware

6 min read

Kaseya: Revil Ransomware Attack
Kaseya: Revil Ransomware Attack
Ransomware

6 min read


Published in

Confluera Engineering

·Apr 19, 2021

Exchange Server Attacks — A recurring story

Zero day vulnerabilities in Microsoft Exchange server have had a widespread impact in March 2021. The attacks were initially attributed to the Hafnium group but now multiple threat actors are leveraging these vulnerabilities. Recently, four new Exchange server vulnerabilities were revealed by NSA and MSRC. The Vulnerabilities In March 2021, one vulnerability…

Confluera

5 min read

Exchange Server Attacks — A recurring story
Exchange Server Attacks — A recurring story
Confluera

5 min read

Sushant Paithane

Sushant Paithane

7 Followers

Security Researcher

Following
  • Nasreddine Bencherchali

    Nasreddine Bencherchali

  • Mehmet Ergene

    Mehmet Ergene

  • Nmukherj

    Nmukherj

  • Matt Fuller

    Matt Fuller

  • Joel Schopp

    Joel Schopp

See all (12)

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Text to speech

Teams