Home     >     Technology     >    

Two Sangfor Studies Selected for Presentation at Black Hat USA 2021

HONG KONG SAR -  - 28 June 2021 - Black Hat USA 2021 kicks off on July 31st, bringing together the world's most cutting-edge security researchers for a week of security demonstrations and information sharing. Competition to present is fierce, with only the most unique research highlighted. Sangfor Security Team is proud to be presenting two studies to the world's top security experts and researchers.

Black Hat USA -->is the largest and most authoritative source for security trends. Two Sangfor studies were selected from thousands submitted for presentation: " Diving Into Spooler: Discovering LPE and RCE Vulnerabilities in Windows Printer" and "Exploiting Windows COM/WinRT Services" with Sangfor researchers Zhiniang Peng, Xuefeng Li and Lewis Lee presenting.  These presentations showcase previously unknown or zero-day privilege escalation (LPE) and remote execution (RCE) vulnerabilities. Hackers exploit LPE and RCE vulnerabilities to gain administrative access for stealing data, installing ransomware, or to attack other systems.  Zero-day vulnerabilities greatly increases risk from LPE and RCE vulnerabilities because you cannot protect against what you do not know.

Multiple 0-Day Vulnerabilities Found in Spooler

Ten years ago, the Stuxnet worm used a Windows Printer Spooler privilege upgrade vulnerability to destroy Iran's nuclear enrichment centrifuges, and infect more than 45,000 networks, crippling Iran's nuclear facilities.  Sangfor researchers discovered multiple, new 0-day vulnerabilities within Spooler, all detailed in their upcoming presentation at the Black Hat conference.


Sangfor Discovers Hundreds of Windows COM/WinRT Vulnerabilities

Windows COM/WinRT components are a basic part of Windows 10 Universal Windows Platform (UWP) applications, widely used for cross-process communication. Security vulnerabilities in these components means Windows systems would be exposed to many different types of attack. Sangfor researchers discovered more than 100 vulnerabilities in Windows COM/WinRT services.


Sangfor BlueOps Team

Experienced security teams are the most coveted in cyber security now, keeping up with the constant flow of new cyber threat and ensuring enterprises have the tools they need to respond effectively. Sangfor BlueOps, Sangfor's highly skilled defensive security test or blue team, works to improve attack detection and defence of Sangfor's security solutions. They hunt threats daily to identify dangers from hacking groups and their software then develop effective response methods against them.


  • Media Contact
  • Sangfor
Information contained on this page is provided by an independent third-party content provider.This Site make no warranties or representations in connection therewith.If you are affiliated with this page and would like it removed it please contact service@ceapress.com
Related tags: Technology

Top 7 trends for the security industry in 2023

2023-01-17 22:45:00

The physical security industry has been changing quickly in recent years. Developments and applications of cutting-edge technologies in this ever-evolving industry such as AI, machine perception, and IoT, are breaking boundaries all the time. We have seen security systems become deeply integrated and more comprehensive, expanding with capabilities that are now shouldering more intelligent tasks to improve efficiency in security as well as other operational functions. And all this is happening across many different industries and types of organizations.

Montage Technology Releases World's First Gen3 DDR5 Registering Clock Driver Engineering Samples

2022-12-02 03:00:00

Montage Technology, a leading data processing and interconnect IC design company, today announced that it has shipped the world’s first Gen3 registering clock driver engineering samples to major memory manufacturers for their development of next-generation memory modules used in servers.

GWM Presents Various Intelligent Automobiles at 39th Thailand International Motor Expo 2022

2022-12-01 00:00:00

GWM, as the “Global Intelligent Technology Company”, brings a fleet of cutting-edge electric vehicles to the 39th Thailand International Motor Expo 2022. The company is showing a sleeker ORA Grand Cat, New HAVAL H6 Hybrid SUV, the off-road TANK500 HEV, and some other Thailand’s popular models.

BYD Rolls Off Its 3 Millionth New Energy Vehicle and Debuts A New Passenger Car Brand Matrix

2022-11-16 23:18:00

BYD's acceleration on promoting New Energy Vehicles. From the first new energy vehicle to the 1 millionth new energy vehicle in 13 years and from 1 million to 2 million in just 1 year and from 2 million to 3 million in just 6 months, BYD is actively promoting NEVs. "To reassure our customers about safety, we have made it a mission that we will carry to the end". In addition to the Blade Battery and CTB technology, BYD will also launch another safe and novel pioneering technology which will be equipped for the first time on the new model of its high-end brand, the Yangwang brand. BYD Auto will build up its brand matrix with five brands. These five brands are Dynasty, Ocean, Denza, Yangwang, and a new brand that specializes in professional and personalized identities. BYD operates globally. As a global seeker of talent, BYD acquires its talents worldwide. In terms of operation, BYD has extended its new energy vehicle footprint to over 400 cities across 70 countries and regions on 6 continents. In particular, BYD's new energy passenger cars have entered Norway, Germany, Japan, Thailand, Brazil, and other markets in the world. In the future, BYD's new energy passenger cars will enter more markets and will be manufactured as well as sold globally.

Trina Solar defines the aesthetic black product by high tech, delivering new Vertex S modules globally

2022-11-01 23:02:00

Trina Solar's Vertex S Aesthetic Module, an upgraded product highly anticipated by global customers, has arrived in Europe, Australia, Japan and other markets recently. It is the first solar PV module to win the Red Dot Award and is turning heads because of its efficient and reliable performance and an outstanding design and visual appearance, making it a favorite among distributed solar rooftops in global markets.

Hikvision released the evolutionary eDVR Series with eSSD technology

2022-10-12 00:00:00

October 12, 2022 – Hikvision recently added the eDVR Series into its expanding portfolio of security solutions for SMBs. Powered by embedded solid state drive technology, Hikvision's eDVRs are compact, durable, easy-to-use, and energy-efficient. All this means they are ideal for small-to-medium-sized businesses and residential applications.