Deploying Files via Group Policies or How Group Policy Updates Can Ruin Your Day

20. October 2022
Security Research | Cybersecurity Tips

During a workstation assessment at the beginning of 2021, usd HeroLab analysts identified a trivial privilege escalation vulnerability occurring during Group Policy Updates. The vulnerability itself was not exploitable by default, but relied on a misconfiguration. However, this type of misconfiguration seemed to occur in other environments as well, so they informed Microsoft about the issue.

With their LabNews blog post, they want to raise awareness of this problem and help other security analysts and system administrators to recognize and fix it.

Continue to blog post

MICROSOFT | SECURITY ANALYSIS | SECURITY RESEARCH

Also interesting:

Chances and Risks of Single Sign-On Solutions

Chances and Risks of Single Sign-On Solutions

Jul 29, 2021

Single Sign-On (SSO) is an authentication method that allows users to log into multiple applications and websites using the same login data. Lauritz Holtmann, Senior Consultant IT Security at usd HeroLab, has been dealing with the security aspects of Single Sign-On...

Categories

Categories

#BeAware Cloud Security Customer Stories  | Cyber Defence  |  Cybersecurity Tips  |  Events & Community Financial Sector & Compliance  |  Life@usd  |  News  |  PCI -Tipps  |  PCI News Pentest Insights  |  Security Audits  |  Security Research  |  usd Updates