trend micro research : exploits & vulnerabilities – Page 3

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

March 18, 2024 admin trend micro research : articles, news, reports, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Arun Shaji| Date: Tue, 19 Mar 2024 00:00:00 +0000

Jenkins, a popular open-source automation server, was discovered to be affected by a file read vulnerability, CVE-2024-23897.

Security TrendMicro

CVE-2024-21412: DarkGate Operators Exploit Microsoft Windows SmartScreen Bypass in Zero-Day Campaign

March 13, 2024 admin trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Peter Girnus| Date: Wed, 13 Mar 2024 00:00:00 +0000

In addition to our Water Hydra APT zero day analysis, the Zero Day Initiative (ZDI) observed a DarkGate campaign which we discovered in mid-January 2024 where DarkGate operators exploited CVE-2024-21412.

Security TrendMicro

Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities

February 28, 2024 admin trend micro research : apt & targeted attacks, trend micro research : exploits & vulnerabilities, trend micro research : ransomware

Credit to Author: Ian Kenefick| Date: Tue, 27 Feb 2024 00:00:00 +0000

This blog entry gives a detailed analysis of these recent ScreenConnect vulnerabilities. We also discuss our discovery of threat actor groups, including Black Basta and Bl00dy Ransomware gangs, that are actively exploiting CVE-2024-1708 and CVE-2024-1709 based on our telemetry.

Security TrendMicro

Global Cybersecurity Trends: AI, Geopolitical Risks, and Zero Trust

February 13, 2024 admin trend micro research : annual predictions, trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : network, trend micro research : privacy & risks

Credit to Author: David Chow| Date: Tue, 13 Feb 2024 00:00:00 +0000

Trend Micro’s Chief Technology Strategy Officer discusses the biggest cybersecurity trends and what to watch for in 2024.

Security TrendMicro

SmartScreen Vulnerability: CVE-2024-21412 Facts and Fixes

February 13, 2024 admin trend micro research : articles, news, reports, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Trend Micro Research| Date: Tue, 13 Feb 2024 00:00:00 +0000

This entry aims to provide additional context to CVE-2024-21412, how it can be used by threat actors, and how Trend protects customers from this specific vulnerability.

Security TrendMicro

CVE-2024-21412: Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day

February 13, 2024 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Peter Girnus| Date: Tue, 13 Feb 2024 00:00:00 +0000

The APT group Water Hydra has been exploiting the zero-day Microsoft Defender SmartScreen vulnerability (CVE-2024-21412) in its campaigns targeting financial market traders. This vulnerability, which has now been patched by Microsoft, was discovered and disclosed by the Trend Micro Zero Day Initiative.

Security TrendMicro

Unveiling Atlassian Confluence Vulnerability CVE-2023-22527: Understanding and Mitigating Remote Code Execution Risks

February 7, 2024 admin trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Jagir Shastri| Date: Wed, 07 Feb 2024 00:00:00 +0000

In this blog entry, we discuss CVE-2023-22527, a vulnerability in Atlassian Confluence that has a CVSS score of 10 and could allow threat actors to perform remote code execution.

Security TrendMicro

Unifying Cloud Security Beyond Siloes

February 6, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : data center, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : security strategies

Credit to Author: Alifiya Sadikali| Date: Tue, 06 Feb 2024 00:00:00 +0000

Attacks don’t stay in siloes, and neither should your security solutions. Explore the benefits of a cybersecurity platform that consolidates security across multiple layers—including the cloud—for more proactive risk management.