trend micro research : exploits & vulnerabilities – Page 12

Analyzing an Old Bug and Discovering CVE-2021-30995

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Mickey Jin| Date: Fri, 14 Jan 2022 00:00:00 +0000

A vulnerability found in 2021 has been patched and re-patched in the months since it was reported. We analyze the bug and outline the process that led to the discovery of CVE-2021-30995.

Security TrendMicro

LoRaWAN’s Protocol Stacks: The Forgotten Targets at Risk

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Sébastien Dudek| Date: Tue, 11 Jan 2022 00:00:00 +0000

This report is the fourth part of our LoRaWAN security series, and highlights an attack vector that, so far, has not attracted much attention: the LoRaWAN stack. The stack is the root of LoRaWAN implementation and security. We hope to help users secure it and make LoRaWAN communication resistant to critical bugs.

Security TrendMicro

This Week in Security News – January 7, 2022

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : connected car, trend micro research : cyber threats, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities, trend micro research : mobile, trend micro research : ransomware

Credit to Author: Jon Clay| Date: Fri, 07 Jan 2022 00:00:00 +0000

This week, read about Log4j vulnerabilities in connected cars and charging stations and how iOS malware can fake iPhone shutdowns to snoop on cameras and microphones.

Security TrendMicro

Examining Log4j Vulnerabilities in Connected Cars and Charging Stations

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : connected car, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Sébastien Dudek| Date: Thu, 23 Dec 2021 00:00:00 +0000

In this entry we look into how Log4j vulnerabilities affect devices or properties embedded in or used for connected cars, specifically chargers, in-vehicle infotainment systems, and digital remotes for opening cars.

Security TrendMicro

The Log4j story, and how it has impacted our customers

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities, trend micro research : iot

Read about the Log4j story, an analysis of the impact and what to do next.

Security TrendMicro

What to Do About Log4j

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities

Credit to Author: William Malik| Date: Tue, 21 Dec 2021 00:00:00 +0000

Learn more about some tactical measures people are already taking, and some strategic guidance for what to do after the immediate crisis abates.

Security TrendMicro

Are Endpoints at Risk for Log4Shell Attacks?

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

We created a free assessment tool for scanning devices to know whether it is at risk for Log4Shell attacks.

Security TrendMicro

This Week in Security News – December 17, 2021

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities, trend micro research : iot, trend micro research : ransomware

Credit to Author: Jon Clay| Date: Fri, 17 Dec 2021 00:00:00 +0000

This week, read on Purple Fox’s infection chain observed by Trend Micro’s Managed XDR. Also, learn about the Log4j vulnerability that has the potential to cause ‘incalculable’ damage.

Security TrendMicro

Patch Now: Apache Log4j Vulnerability Called Log4Shell Actively Exploited

February 2, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Ranga Duraisamy| Date: Mon, 13 Dec 2021 00:00:00 +0000

Log4Shell., also known as CVE-2021-44228, was first reported privately to Apache on November 24 and was patched with version 2.15.0 of Log4j on December 9. It affects Apache Struts, Apache Solr, Apache Druid, Elasticsearch, Apache Dubbo, and VMware vCenter.