ron.benyizhak

Security Researcher at SafeBreach

Israel

English

Virtual Events

1

Talks Delivered

1

Events Spoken At

0

Countries Visited

1

Years Speaking

1

Total Talks Given

About

Ron (@RonB_Y) is a security researcher at SafeBreach with 10 years of experience. He works in vulnerability research and has knowledge in forensic investigations, malware analysis and reverse engineering. Ron previously worked in the development of security products and spoke several times at DEFCON

Speaking Topics & Expertise

Areas of Expertise

Windows Security

Presentation Types

Technical Talk

Audience Types

Security Professionals

Researchers

Speaking History

2026

You snooze you lose: Winning LPEs by racing services for RPC endpoints

TyphoonCon 2026

May 24, 2026

Seoul

We discovered that a low privileged process can masquerade as a known RPC server, leading to clients communicating with it and trusting its information. This led us to find vulnerabilities in 2 different services that were acknowledged by Microsoft as External Control of Path. CVE-2025-49760 forces a protected process to authenticate the machine account against an arbitrary server. CVE-2025-59200 creates a malicious popup that escalates privileges from low integrity to medium on click

Connect

@@RonB_Y LinkedIn Profile

Experience Level

intermediate