#BlackHat2024

Critical AWS Flaws Expose Risks

Aqua Security researchers uncovered six critical vulnerabilities in AWS services, leading to risks like remote code execution, data theft, AI model manipulation, and account takeover. AWS promptly patched these vulnerabilities, but the researchers warn that similar flaws might exist in other AWS and open-source services. They advised organizations on general …

Read More

Windows Downgrade Flaws Exposed

SafeBreach Labs’ researcher Alon Leviev exposed flaws in Microsoft’s Windows Update system. These flaws allow attackers to launch undetectable downgrade attacks. Hackers can revert fully patched Windows machines to vulnerable states, turning fixed issues into zero-day threats. Leviev demonstrated how a manipulated Update process can bypass security features, exposing systems …

Read More