Tag Trend Micro

Warning: Ongoing Exploitation of Vulnerabilities in TP-Link, Apache, and Oracle Identified

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has identified and added three security vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog, highlighting concerns over active exploitation. These vulnerabilities pose significant risks to various systems and require immediate attention from cybersecurity professionals. The first vulnerability, CVE-2023-1389, carries a CVSS score…

Read MoreWarning: Ongoing Exploitation of Vulnerabilities in TP-Link, Apache, and Oracle Identified

New Ransomware Variant ‘CACTUS’ Targeting VPN Vulnerabilities to Breach Networks

New Ransomware CACTUS Exploits VPN Vulnerabilities in Ongoing Cyber Attacks Cybersecurity researchers have identified a new strain of ransomware, dubbed CACTUS, which exploits known vulnerabilities in VPN appliances to gain entry into targeted networks. This ransomware variant has primarily targeted large commercial enterprises since its emergence in March 2023. Upon…

Read MoreNew Ransomware Variant ‘CACTUS’ Targeting VPN Vulnerabilities to Breach Networks

Microsoft’s May Patch Tuesday Addresses 38 Vulnerabilities, Including 2 Exploited Zero-Day Issues

In May 2023, Microsoft released its Patch Tuesday updates, addressing 38 security vulnerabilities, including two major zero-day flaws that are currently being exploited. The updates aim to fortify Windows systems against active threats that pose significant risks to users and businesses. Trend Micro’s Zero Day Initiative has highlighted that this…

Read MoreMicrosoft’s May Patch Tuesday Addresses 38 Vulnerabilities, Including 2 Exploited Zero-Day Issues

Microsoft Issues Updates to Address Critical Vulnerabilities in Windows and Other Software

Microsoft has recently released critical security updates aimed at addressing significant vulnerabilities in its Windows operating system and associated software. This rollout is part of the scheduled Patch Tuesday updates for June 2023. The update addresses a total of 73 vulnerabilities, categorized by severity as follows: six are marked as…

Read MoreMicrosoft Issues Updates to Address Critical Vulnerabilities in Windows and Other Software

New Vulnerability Found: Unauthenticated SQL Injection Flaw in MOVEit Transfer Software

Progress Software has announced the identification and resolution of a critical SQL injection vulnerability within MOVEit Transfer, software widely utilized for secure file transfers. Alongside this, the company has addressed two additional high-severity vulnerabilities that also pose significant security risks. The SQL injection vulnerability, designated as CVE-2023-36934, could enable unauthenticated…

Read MoreNew Vulnerability Found: Unauthenticated SQL Injection Flaw in MOVEit Transfer Software

Microsoft Issues Patch for Two Actively Exploited Zero-Day Vulnerabilities

Microsoft has issued an update addressing 59 vulnerabilities across its suite of products, including two critical zero-day vulnerabilities that have already been exploited by malicious actors. This release highlights the ongoing threat landscape, with the tech giant emphasizing the risks posed by active exploitation of these flaws. Among the 59…

Read MoreMicrosoft Issues Patch for Two Actively Exploited Zero-Day Vulnerabilities

Trend Micro Issues Emergency Patch for Actively Exploited Critical Security Flaw

Trend Micro Issues Critical Patches for Exploited Flaw in Apex One and Worry-Free Solutions Cybersecurity firm Trend Micro has issued urgent patches to rectify a serious security vulnerability affecting its Apex One and Worry-Free Business Security solutions for Windows. This vulnerability, identified as CVE-2023-41179, has been linked to a third-party…

Read MoreTrend Micro Issues Emergency Patch for Actively Exploited Critical Security Flaw