// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRF-01DTG 0600Z
ColdRecon / Brief Archive / Week of July 1, 2024
Signal Brief · Archived

Week of July 1, 2024

2024-07-01 — 2024-07-07 · 2 PUBLIC EVENTS · GENERAL / NON-PERSONALIZED

In the week of July 1, 2024, ColdRecon logged 2 public endpoint-security events from open-source reporting — 1 research poc, 1 vuln disclosure. Vendors in the record this week: EasyAntiCheat, VIPRE.

The Week's Public Record

Events

2024-07-02
research poc
Proof-of-Concept Bypass for EasyAntiCheat in Sea of Thieves via Configuration TamperingSea of Thieves EAC Bypass (Temporary) SoT EOS
A proof-of-concept tool was released that bypasses EasyAntiCheat (EAC) in Sea of Thieves by modifying the game's settings.json to invalidate sandboxid, deploymentid, and productid, preventing EAC initialization. The tool reverts the changes upon game launch to avoid detection. This allows cheats to be injected without triggering the anti-cheat.
2024-07-01
vuln disclosure
VIPRE Advanced Security PMAgent Link Following Local Privilege Escalation VulnerabilityCVE-2024-5928
A local privilege escalation vulnerability exists in VIPRE Advanced Security's Patch Management Agent. By creating a symbolic link, a low-privileged attacker can abuse the agent to delete a file, leading to arbitrary code execution as SYSTEM. VIPRE has released a patch to address the issue.
Every event in this brief is a record in ColdRecon's canonical set, drawn from public open-source reporting and linked to its source. This is the general, non-personalized signal — published 7 days after the fact. The live daily brief, written for your deals, is for cleared officers.

This is last week, public. Get this morning's, written for you.

The live ColdRecon brief lands at 0600 daily — the same signal, filtered to your competitors and framed for your deals. Request clearance and tomorrow's is yours.

Request Clearance →