Tag Trend Micro

August 11, 2025

Malicious Game Optimization Apps Spread Winos 4.0 Malware to Gamers

Cybersecurity experts are raising alarms about a command-and-control (C&C) framework known as Winos, which is being propagated through gaming-related apps, including installation tools, speed boosters, and optimization utilities. According to a report from Fortinet FortiGuard Labs shared with The Hacker News, “Winos 4.0 is a sophisticated malicious framework designed for extensive functionality, stable architecture, and efficient control over various online endpoints for further actions.” This framework, rebuilt from Gh0st RAT, features several modular components, each assigned distinct tasks. Campaigns distributing Winos 4.0 were initially noted in June by Trend Micro and the KnownSec 404 Team, which are monitoring the activity under the names Void Arachne and Silver Fox. These attacks primarily target Chinese-speaking users, utilizing black hat Search Engine Optimization (SEO) methods, along with social media and messaging platforms like Te…

Winos 4.0 Malware Targets Gamers via Malicious Game Optimization Software Cybersecurity experts have issued an alert regarding a sophisticated malware framework known as Winos 4.0, which is infiltrating the gaming community through seemingly legitimate applications. These applications, including game installation tools, speed boosters, and optimization utilities, serve as vectors for…

August 6, 2025

Severe Unpatched SharePoint Zero-Day Under Active Exploitation, Compromises Over 75 Company Servers

July 20, 2025
Zero-Day / Vulnerability

A serious security flaw in Microsoft SharePoint Server has been weaponized in an ongoing, large-scale exploitation campaign. The zero-day vulnerability, identified as CVE-2025-53770 (CVSS score: 9.8), is a variant of CVE-2025-49704 (CVSS score: 8.8), which was addressed by Microsoft in their July 2025 Patch Tuesday updates. Microsoft explained that “deserialization of untrusted data in on-premises Microsoft SharePoint Server enables unauthorized attackers to execute code over a network,” as detailed in an advisory released on July 19, 2025. The company is actively preparing a comprehensive update to mitigate this issue. Viettel Cyber Security is credited with discovering and reporting the flaw through Trend Micro’s Zero Day Initiative (ZDI). Additionally, Microsoft has acknowledged awareness of ongoing attacks related to this vulnerability.

Critical Unpatched SharePoint Zero-Day Under Active Exploitation, Compromises Over 75 Company Servers July 20, 2025 In an alarming development, a critical zero-day vulnerability in Microsoft SharePoint Server has been actively exploited in a large-scale attack campaign, leading to the breach of more than 75 company servers. This vulnerability, designated as…

July 24, 2025

Admin of Suspected XSS Cybercrime Forum Taken into Custody

Cybercrime, Fraud Management & Cybercrime, Incident & Breach Response Also: Clorox Suing IT Vendor Over Password Incident Anviksha More (@AnvikshaMore) • July 24, 2025 Image: Shutterstock/ISMG Information Security Media Group provides a weekly summary of cyber incidents globally. This week, authorities arrested the suspected admin of the XSS cybercrime forum…

July 7, 2025

Microsoft Unveils a More Secure Windows Ecosystem

Business Continuity Management / Disaster Recovery, Endpoint Security, Governance & Risk Management Windows 11 Revamp Means No Kernel Access Required for Third-Party Security Tools Mathew J. Schwartz (euroinfosec) • June 30, 2025 Image: Shutterstock “All of the endpoint security features you’ve come to expect, without that pesky kernel-level access,” summarizes…

June 21, 2025

Anubis Ransomware Targets Disneyland Paris in Latest Attack

The Anubis ransomware group has targeted Disneyland Paris, marking the amusement park as its latest victim. Reports confirm that the gang has shared details of the breach on its dark web leak site, claiming that they have obtained an archive of 64GB of stolen data. Anubis operates as a ransomware-as-a-service…

June 10, 2025

SentinelOne Reports No Breach Following Hardware Supplier Cyberattack

Third-Party Risk Management, Cyberwarfare / Nation-State Attacks, Fraud Management & Cybercrime Intrusion Linked to ShadowPad Malware Used by Chinese APT Groups Mathew J. Schwartz (@euroinfosec) • June 9, 2025 Image: Michael Vi/Shutterstock SentinelOne, a prominent cybersecurity firm, reported a suspected intrusion by Chinese cyber attackers targeting a logistics company that…

June 8, 2025

The Emergence of ‘Vibe Hacking’: The Next AI Dilemma

In 2023, it was reported that security researchers at Trend Micro successfully utilized ChatGPT to generate malicious code through engagement with the AI as if it were a security analyst and penetration tester. This process enabled the model to produce sophisticated PowerShell scripts based on extensive databases of known malicious…

June 7, 2025

FBI Alerts of Rising BADBOX 2.0 Botnet Threat in Chinese Devices

Global Fraud Risk Looms as Over One Million Infected Android Devices Surface A concerning trend has emerged with the discovery of a botnet operation, known as BADBOX 2.0, which has compromised more than one million off-brand Android devices worldwide. As reported by the FBI, consumers are urged to scrutinize their…

May 9, 2025

WatchGuard Appoints Former SentinelOne COO Srivatsan as Interim CEO

Endpoint Security, Governance & Risk Management, Managed Security Service Provider (MSSP) Vats Srivatsan Appointed Interim CEO at WatchGuard Following Prakash Panjwani’s Departure Michael Novinson (@MichaelNovinson) • May 8, 2025 Vats Srivatsan, interim CEO of WatchGuard (Image: WatchGuard) Vats Srivatsan, the former Chief Operating Officer of SentinelOne, has been appointed as…