Zero-day vulnerabilities are exploited by cyber attackers to gain administrative access to networks for data theft or further infiltration and infection of the network. Founded in 1992, DEF CON in Las Vegas has grown to become one of the largest hacker conventions in the world. SharePoint is the most well-known CMS used to share and manage content within organizations simplifying team collaboration. Several high impact vulnerabilities (including CVE-2021-24072, CVE-2020-17120, and CVE-2020-17017) will be discussed detailing their discovery and exploitation. From an offensive perspective, it will reveal several attack surfaces, mitigations implemented against them, and how those mitigations can be bypassed.
The presentation, by Sangfor BlueOps members Yuhao Weng and Zhiniang Peng, with security researcher Steven Seeley, selected from thousands submitted to DEFCON, will explain the security architecture of Microsoft SharePoint's server and how it differs from other popular Content Management System (CMS) products. Bally's Las Vegas Hotel & Casino: Don't go during Defcon - See 27,510 traveler reviews, 6,205 candid photos, and great deals for Bally's Las Vegas Hotel & Casino at Tripadvisor. Yesterday authorities detained 22-year-old Hutchins after the Defcon hacker conference in Las Vegas as he attempted to fly home to the UK, where he works as a researcher for the security firm. The exploits will be demonstrated during the 45-minute presentation.
HONG KONG, J/PRNewswire/ - Sangfor Technologies is proud to announce their presentation – Don't Dare to Exploit - An Attack Surface Tour of SharePoint Server – at DEFCON 29 in Las Vegas on August 7, 2021, outlining several previously unknown SharePoint attack surfaces, mitigations to these attack surfaces, and how these mitigations can be bypassed.
0 kommentar(er)
