Show in Graph
Common Information
Type Value
Value 
Exploitation for Privilege Escalation - T1404
Category Attack-Pattern
Type Mitre-Attack-Pattern
Misp Type Cluster
Description Adversaries may exploit software vulnerabilities in order to elevate privileges. Exploitation of a software vulnerability occurs when an adversary takes advantage of a programming error in an application, service, within the operating system software, or kernel itself to execute adversary-controlled code. Security constructions, such as permission levels, will often hinder access to information and use of certain techniques. Adversaries will likely need to perform privilege escalation to include use of software exploitation to circumvent those restrictions. When initially gaining access to a device, an adversary may be operating within a lower privileged process which will prevent them from accessing certain resources on the system. Vulnerabilities may exist, usually in operating system components and applications running at higher permissions, that can be exploited to gain higher levels of access on the system. This could enable someone to move from unprivileged or user- level permission to root permissions depending on the component that is vulnerable.
Details Published Attributes CTI Title
Details Website 2024-11-16 90 From Royal to BlackSuit: Understanding the Tactics and Impact of a Sophisticated Ransomware Strain | #ransomware | #cybercrime | National Cyber Security Consulting
Details Website 2024-11-14 24 Major cyber attacks and data breaches of 2024
Details Website 2024-11-11 35 Threat Intelligence Report 5th November - 11th November
Details Website 2024-11-04 35 G700 : The Next Generation of Craxs RAT - CYFIRMA
Details Website 2024-11-04 57 Threat Intelligence Report October 29 - November 4 2024 | Red Piranha
Details Website 2024-10-30 379 从目录浏览分析幽盾攻击组织-安全客 - 安全资讯平台
Details Website 2024-10-28 376 Inside the Open Directory of the “You Dun” Threat Group
Details Website 2024-10-28 25 Threat Intelligence Report October 22 - October 28 2024 | Red Piranha
Details Website 2024-10-23 2 Climbing The Ladder | Kubernetes Privilege Escalation (Part 1)
Details Website 2024-10-22 22 Threat Intelligence Report October 15 - October 21 2024 | Red Piranha
Details Website 2024-10-17 42 New macOS vulnerability, “HM Surf”, could lead to unauthorized data access
Details Website 2024-10-16 108 Iranian Cyber Actors’ Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations | CISA
Details Website 2024-10-14 21 Threat Intelligence Report 8th October – 14th October
Details Website 2024-10-14 6 Multiple Vulnerabilities in Palo Alto Network’s Expedition Could Allow for Arbitrary Code Execution
Details Website 2024-10-09 22 APT 40 Advisory PRC MSS Tradecraft In Action Summary
Details Website 2024-10-07 67 Threat Intelligence Report October 1 - October 7 2024 | Red Piranha
Details Website 2024-09-27 123 Betting on Bots: Investigating Linux malware, crypto mining, and gambling API abuse — Elastic Security Labs
Details Website 2024-09-19 142 Black Basta Ransomware: What You Need to Know | Qualys Security Blog
Details Website 2024-09-10 4 Decoding MITRE ATT&CK: Your Cybersecurity Rosetta Stone
Details Website 2024-09-02 48 Dark Web Profile: Abyss Ransomware - SOCRadar® Cyber Intelligence Inc.
Details Website 2024-08-19 20 PG_MEM: A Malware Hidden in the Postgres Processes
Details Website 2024-08-12 87 Ongoing Social Engineering Campaign Refreshes Payloads | Rapid7 Blog
Details Website 2024-08-01 59 DNS Early Detection - Breaking the Black Basta Ransomware Kill Chain | Infoblox
Details Website 2024-07-02 5 Pentesting results for 2023
Details Website 2024-06-24 24 Chinese State-Sponsored RedJuliett Intensifies Taiwanese Cyber Espionage via Network Perimeter Exploitation | Recorded Future