Topaz Antifraud wsftprm.sys vulnerable kernel driver — DragonForce BYOVD chain

cve · CVE-2023-52271

Coverage timeline

first 2026-06-17 → last 2026-06-17

Briefs

1 distinct

Sources cited

2 hosts

Sections touched

—

Co-occurring entities

no co-occurrence

Story timeline

2026-06-17CTI Daily Brief — 2026-06-17

Source distribution

attack.mitre.org6 (86%)
helpnetsecurity.com1 (14%)

External references

NVD · cve.org · CISA KEV

All cited sources (7)

attack.mitre.orginline`T1068` Exploitation for Privilege Escalationhttps://attack.mitre.org/techniques/T1068/
cited in 2026-06-17
attack.mitre.orginline`T1562.001` Impair Defenseshttps://attack.mitre.org/techniques/T1562/001/
cited in 2026-06-17
attack.mitre.orginline`T1046`https://attack.mitre.org/techniques/T1046/
cited in 2026-06-17
attack.mitre.orginline`T1018`https://attack.mitre.org/techniques/T1018/
cited in 2026-06-17
attack.mitre.orginline`T1555.003`https://attack.mitre.org/techniques/T1555/003/
cited in 2026-06-17
attack.mitre.orginline`T1021`https://attack.mitre.org/techniques/T1021/
cited in 2026-06-17
helpnetsecurity.cominlineHelp Net Security, 2026-06-16https://www.helpnetsecurity.com/2026/06/16/dragonforce-microsoft-teams-malware-backdoor-turn/
source profile · cited in 2026-06-17

Items in briefs about Topaz Antifraud wsftprm.sys vulnerable kernel driver — DragonForce BYOVD chain

No parsed item heading or body matches this entity yet. Items match by exact CVE id (for CVE entities), by lead-segment substring of the title in the item heading or body, or by a distinctive anchor token from the title appearing in the item heading. Coverage that lives inside a broader section (no per-item heading) is captured by the Story timeline above.