A new report published by Trend Micro revealed that Linux malware and cloud misconfigurations make up some of the top cybersecurity threats facing organizations over the first half of 2022.
CISA adds 7 vulnerabilities to Known Exploited Vulnerabilities Catalog (to include Trend Micro, Sophos, Dell, QNAP)
The Cybersecurity and Infrastructure Security Agency (CISA) has added 7 vulnerabilities to its Known Exploited Vulnerabilities Catalog. Recent additions include vulnerabilities affecting Trend Micro, Sophos, Windows, QNAP, Dell, and Dasan products.
Cybersecurity experts have discovered a popular Android app riddled with vulnerabilities has been download one billion times. An attacker can exploit the permissions on SHAREit mobile app to leak sensitive data and remotely execute malicious code.
Security researchers are warning organizations to be on the lookout for a fast-evolving macOS malware dubbed “ThiefQuest.” ThiefQuest, also known as EvilQuest, targets macOS systems and is used to encrypt files and install keyloggers.
Trend Micro has patched five vulnerabilities in multiple products. The updates address two zero-days – one Critical risk vulnerability CVE-2020-8467 and another High risk vulnerability CVE-2020-8468 under active attack in the wild. In addition, the company also patched three other Critical vulnerabilities that require no authentication to exploit.
Trend Micro has revealed a rogue employee has stolen 120,000 consumer customer records from an internal customer service database.
Last week, a worm was used to spread via removable drives and install a fileless version of the BLADABINDI backdoor. BLADABINDI is notable as a remote access tool (RAT) used for multiple backdoor capabilities and used for keylogging and DDoS threats.
A proof-of-concept (POC) has been released for an exploit of a recently patched Microsoft Edge vulnerability.
Attackers are exploiting IoT devices with open ADB port 5555 to spread malware.