BeaverTail and OtterCookie evolve with a new Javascript module

Cisco Talos has uncovered a new attack linked to Famous Chollima, a threat group aligned with North Korea DPRK. This group is known for impersonating hiring organizations to target job seekers, tricking them into installing information-stealing malware to obtain cryptocurrency and user credential...

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent allows a hacker to increase their privileges.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow attackers to increase their privileges...

PT-2024-41127 · Trend Micro · Trend Micro Deep Security Agent

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security Agent affected versions not specified Description: The issue is related to incorrect link resolution before file access in the Anti-Malware module of Trend Micro Deep Security Agent, which could allow an attacker to...

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent operating system for Windows allows a malicious actor to escalate their privileges and execute arbitrary code.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent antivirus protection software for Windows operating systems is related to an incorrect determination of the link before accessing a file. Exploiting this vulnerability can allow attackers to enhance their privileg...

CVE-2023-23349

Kaspersky has fixed a security issue in Kaspersky Password Manager KPM for Windows that allowed a local user to recover the auto-filled credentials from a memory dump when the KPM extension for Google Chrome is used. To exploit the issue, an attacker must trick a user into visiting a login form o...

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent operating system for Windows allows a malicious actor to escalate their privileges and execute arbitrary code.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent antivirus protection software for Windows operating systems is related to deficiencies in access control for directories. Exploiting this vulnerability can allow attackers to enhance their privileges and execute...

PT-2023-8406 · Trend Micro · Trend Micro Deep Security +1

Name of the Vulnerable Software and Affected Versions: Trend Micro Deep Security version 20.0 Trend Micro Cloud One - Endpoint and Workload Security Agent affected versions not specified Description: An improper access control issue could allow a local attacker to escalate privileges on affected...