Vulnerabilities & Exploits
- January 14, 2015Every year there are several zero-days and tons of undisclosed vulnerabilities fixed by software vendors. 2014 was a little different. Here are some of the year's most notable, and the lessons we can learn from them.
- January 12, 2015A list of the best security practices that enterprises can apply based on Trend Micro's security predictions for 2015.
- January 09, 2015Video games have reached a point where it's rare for one to not feature an online component, since connectivity enhances the experience. Unfortunately, it also opens up the user and the platform to a number of risks. What can a gamer do?
- January 06, 2015Looking back at the biggest security stories and issues of 2014, how they affected users and various industries, and what we can learn from them.
- December 26, 2014A collaboration between Trend Micro and Facebook found attacks that actively attempt to exploit an existing vulnerability. The attack targets Facebook users via a link in a particular page that leads to a malicious site.
- December 02, 2014A look into the threat landscape during the third quarter of 2014 reveals the loopholes and vulnerabilities in often overlooked targets such as routers and PoS systems that were used as attack vectors.
- November 19, 2014Microsoft has released an out-of-band security bulletin (MS14-068) that addresses a vulnerability in various versions of Windows, stating that the vulnerability is already being used in “limited, targeted attacks”.
- November 14, 2014Microsoft released 16 security updates during its Patch Tuesday release for November 2014, including one for the Windows OLE Automation Array Remote Code Execution Vulnerability that affects almost all Windows versions.
- October 29, 2014A new Shellshock attack targeting SMTP servers has been discovered. Attackers used email to deliver the exploit, which downloads and executes an IRC Bot.