North Korean APT Kimsuky Aka Black Banshee – Active IOCs

June 10, 2024

MuddyWater APT – Active IOCs

June 10, 2024

CVE-2024-36358 – Trend Micro Deep Security Agent Zero-Day Vulnerability

June 10, 2024

Severity

High

Analysis Summary

CVE-2024-36358

Trend Micro Deep Security Agent could allow a local authenticated attacker to gain elevated privileges on the system, caused by a flaw in the Trend Micro Anti-Malware Solution Platform. By using a specially crafted symlink, an authenticated attacker could exploit this vulnerability to gain elevated privileges and execute arbitrary code in the context of SYSTEM.

Impact

Privilege Escalation

Indicators of Compromise

CVE

CVE-2024-36358

Affected Vendors

Trend Micro

Affected Products

Trend Micro Deep Security Agent 20

Remediation

Refer to Trend Micro Security Advisory for patch, upgrade or suggested workaround information.

Trend Micro Security Advisory

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Rewterz Annual Threat Intelligence Report 2024 - Download Now

Platform

Managed Security Services

Managed Penetration Testing

Assess

Transform

Train

Respond

Resources

Multiple Microsoft Windows Products Zero-Day Vulnerabilities Exploit in the Wild

SideWinder APT Group aka Rattlesnake Targeting Pakistan – Active IOCs

F5 BIG-IP Exploit Allows Attackers to Escape Admin Restrictions

Threat Insights

About Us

Our Leadership

CSR

Connect with Us

North Korean APT Kimsuky Aka Black Banshee – Active IOCs

MuddyWater APT – Active IOCs

Severity

High

Analysis Summary

Indicators of Compromise

CVE

Affected Vendors

Affected Products

Remediation

The Wait Is Over!

The Rewterz Annual Threat Intelligence Report 2024 is finally here.