David Cash
Richard Warren- 27 Feb, 2026
Delinea Protocol Handler - Return of the MSI: RCE via Custom Launcher
Summary Ok, so there’s no MSI this time but our last Delinea post was titled ‘MSI Strikes Back’ so we thought we’d stay on …
Read Article-
David Cash
-
Richard Warren
- 21 Jan, 2026
Advisory - Check Point Harmony Local Privilege Escalation (CVE-2025-9142)
Check Point Harmony Local Privilege Escalation (CVE-2025-9142)
Read Article
Iain Smart- 01 Sep, 2025
Breaking Boundaries - Kubernetes Namespaces and multi-tenancy
Footguns and privilege escalations making multi-tenancy difficult in Kubernetes clusters.
Read Article-
Richard Warren
-
David Cash
- 29 Aug, 2025
Advisory - Netskope Client for Windows - Local Privilege Escalation via Rogue Server (CVE-2025-0309)
Always Trust, Never Verify - except when you have to trust the server isn’t malicious .. and install this CA certificate and MSI while …
Read Article-
David Cash
- 20 Aug, 2025
Delinea Protocol Handler - MSI Strikes Back
Introduction Delinea’s custom URL handler allows the software’s update process to be triggered, downloading and running an MSI from an …
Read Article-
Richard Warren
-
David Cash
- 15 Aug, 2025
Advisory - Netskope Cross-tenant Authentication Bypass
Advisory - Netskope Cross-tenant Authentication Bypass
Read Article