Threat Actor: Unknown
Victim: Windows users
Key Points:
* A threat actor is selling a zero-day vulnerability specifically for a Windows 0-day Local Privilege Escalation (LPE) exploit.
* The threat actor is not providing detailed information about the exploit.
* The actor claims that the exploit works on all versions of Windows, but researchers are skeptical about this claim.
* The sale package includes the full-source code and documents.
* The initial asking price for the exploit is $80,000, but negotiation is possible.
__________________________________________________
In a concerning turn of events, a threat actor has allegedly sale of a zero-day vulnerability tailored explicitly for a Windows 0-day Local Privilege Escalation (LPE) exploit. The actor is avoiding providing detailed information about this exploit being offered for sale. In addition, the actor has claimed that it works on all versions of Windows, but researchers find this claim dubious, questioning how this could be possible The sale package includes the full-source code and documents, with an initial asking price of $80,000, although negotiation is possible.
Source: Original Post