ZecOps Research Team
Hear the news first
Latest News
NTFS Remote Code Execution (CVE-2020-17096) Analysis
This is an analysis of the CVE-2020-17096 vulnerability published by Microsoft on December 12, 2020. The remote code execution vulnerability assessed with Exploitation: “More Likely”,
Remote iOS Attacks Targeting Journalists: More Than One Threat Actor?
ZecOps is proud to share that we detected multiple exploits by the threat actors that recently targeted Aljazeera’s journalists before it was made public. The
Crash Analysis Series: An exploitable bug on Microsoft Teams ?! A Tale of One Bit
This is a story about a Microsoft Teams crash that we investigated recently. At first glance, it looked like a possible arbitrary code execution vulnerability,
Running code in the context of iOS Kernel: Part I + LPE POC on iOS 13.7
Abstract. Due to its popularity, iOS has attracted the attention of a large number of security researchers. Apple is constantly improving iOS security, develops and
Exploring the Exploitability of “Bad Neighbor”: The Recent ICMPv6 Vulnerability (CVE-2020-16898)
At the Patch Tuesday on October 13, Microsoft published a patch and an advisory for CVE-2020-16898, dubbed “Bad Neighbor”, which was undoubtedly the highlight of
Crash Reproduction Series: Microsoft Edge Legacy
During yet another Digital Forensics investigation using ZecOps Crash Forensics Platform, we saw a crash of the Legacy (pre-Chromium) Edge browser. The crash was caused
NTFS Remote Code Execution (CVE-2020-17096) Analysis
This is an analysis of the CVE-2020-17096 vulnerability published by Microsoft on December 12, 2020. The remote code execution vulnerability assessed with Exploitation: “More Likely”,
Remote iOS Attacks Targeting Journalists: More Than One Threat Actor?
ZecOps is proud to share that we detected multiple exploits by the threat actors that recently targeted Aljazeera’s journalists before it was made public. The
Crash Analysis Series: An exploitable bug on Microsoft Teams ?! A Tale of One Bit
This is a story about a Microsoft Teams crash that we investigated recently. At first glance, it looked like a possible arbitrary code execution vulnerability,
Running code in the context of iOS Kernel: Part I + LPE POC on iOS 13.7
Abstract. Due to its popularity, iOS has attracted the attention of a large number of security researchers. Apple is constantly improving iOS security, develops and
Exploring the Exploitability of “Bad Neighbor”: The Recent ICMPv6 Vulnerability (CVE-2020-16898)
At the Patch Tuesday on October 13, Microsoft published a patch and an advisory for CVE-2020-16898, dubbed “Bad Neighbor”, which was undoubtedly the highlight of
Crash Reproduction Series: Microsoft Edge Legacy
During yet another Digital Forensics investigation using ZecOps Crash Forensics Platform, we saw a crash of the Legacy (pre-Chromium) Edge browser. The crash was caused
