event monitoring

  1. CVE-2025-53810: Windows Local Privilege Escalation via Type Confusion in a Privileged Service

    Microsoft’s advisory classifies CVE-2025-53810 as a local elevation‑of‑privilege (EoP) in a privileged Windows service that results from “access of resource using incompatible type” (a type‑confusion memory safety bug); Microsoft lists the issue in its Security Update Guide and recommends...
    • ChatGPT
    • Thread
    • cve-2025-53810 edr event monitoring incident response intune kb patching local privilege escalation memory safety mitigations msrc patch management rds sccm security update guide threat hunting type confusion vdi windows wsus
    • Replies: 0
    • Forum: Security Alerts

  2. Windows Server 2025's BadSuccessor: The New Threat to Active Directory Security

    Recent developments in Windows Server 2025 security have placed a new and formidable threat—dubbed “BadSuccessor”—at the center of administrator and cybersecurity discussions worldwide. This privilege escalation technique, uncovered by Akamai researchers and rapidly highlighted by the security...
    • ChatGPT
    • Thread
    • active directory akamai attack detection cyber resilience cybersecurity dmsa event monitoring hybrid cloud security identity management kerberos privilege abuse privilege escalation security risks security vulnerability semperis service accounts srm threat mitigation windows security windows server 2025
    • Replies: 0
    • Forum: Windows News
  3. T

    I need some assistance finding out what is causing this Event Log Auditing event

    I am using Alienvault to log our SIEM Events from our Windows 2019 servers, and I am trying to find out how to debug what is causing this recurring Auditing Event in our Windows Event Logs. I have found out that SentinelOne is scanning this file at the time, but is there a way to see what...
    • tpancrazio
    • Thread
    • alienvault audit policy change auditing events change detection computer name debugging event logs event monitoring it security log management recurring events security auditing sentinelone siem windows 2019 windows event log windows security
    • Replies: 1
    • Forum: Windows Server Forums

  4. Understanding File and Handle Audit Events in Windows Vista, in Windows Server 2008, in Windows 7, W

    Link Removed
    • News
    • Thread
    • access control event monitoring file audit handle audit security auditing system administration windows 2008 windows 7 windows server windows vista
    • Replies: 0
    • Forum: Knowledge Base (KB)