ProgressCommunications.euwww.lubbersdejong.nlwww.marcommit.nl
INFLUX PRProgressCommunications.euProgressCommunications.eu

x.com/ictberichten
Deel dit nu via
Datum: (3 jaar en 13 dagen geleden)
Bedrijf:

Trend Micro plays vital role in uncovering critical Samba bug

Defenders urged to rapidly patch vulnerability in popular open-source software

DALLAS, February 2, 2022 – Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global cybersecurity leader, today confirmed its commitment to making the digital world safer by revealing the instrumental role its Zero Day Initiative (ZDI)* played in finding and reporting a critical vulnerability in the file sharing protocol Samba.

To find out more about the Samba flaw and how to mitigate its impact, please visit our blog here and technical support alert here.

“This latest vulnerability disclosure comes on the heels of the recent Log4j vulnerability and highlights the challenges many global security teams have in mitigating risk across a multitude of applications and open source software,” said Jon Clay, vice president of threat intelligence at Trend Micro. “The good news is this was found during our Pwn2Own event, which means we had an opportunity to work with the developers to responsibly patch and disclose the vulnerabilities. So far, we have not heard of any in-the-wild attacks occurring.”

Trend Micro’s Pwn2Own events run regularly around the world, challenging contestants to find new vulnerabilities and exploits in widely used software and systems. They are part of a company-wide effort to enhance cybersecurity for customers and the entire online community through the ZDI and Trend Micro’s own global threat intelligence team of thousands of researchers.

These efforts are increasingly important as organizations continue to digitally transform, expanding their attack surface and reliance on software –particularly open source components.

The vulnerability in question, CVE-2021-44142, was given a CVSS score of 9.9, illustrating its potentially critical impact on affected organizations. If exploited, the out-of-bounds heap read write bug could allow remote attackers to execute arbitrary code as root.

While no exploits of this vulnerability have been seen in the wild, the window in which affected organizations must patch critical new vulnerabilities before threat actors start exploiting them is increasingly short.

Trend Micro therefore calls on all organizations to patch CVE-2021-44142 or update to the latest Samba version as a matter of urgency.

* The vulnerability was originally disclosed at Pwn2Own Austin 2021 by Nguyen Hoang Thach and Billy Jheng Bing-Jhong of STAR Labs. Lucas Leong of Trend Micro’s ZDI discovered additional variants which were disclosed to Samba as part of this fix. The original issue was also independently found by Orange Tsai of DEVCORE. The ZDI is the world’s largest vendor-agnostic bug bounty program. Since 2005, it has been making software safer by incentivizing researchers to find and responsibly disclose vulnerabilities to vendors.



Over Trend Micro
Trend Micro, wereldwijd leider in cybersecurity, zet zich in voor een wereld waarin we digitale informatie veilig kunnen uitwisselen. Door gebruik te maken van tientallen jaren aan security-expertise, global threat research en voortdurende innovatie beschermt Trend Micro honderdduizenden organisaties en miljoenen individuen in de cloud en op netwerken, apparaten en endpoints. Als leider in cloud- en enterprise-security biedt het platform krachtige en geavanceede verdedigingstechnieken die zijn geoptimaliseerd voor omgevingen zoals AWS, Microsoft en Google, en centraal inzicht voor betere en snellere detectie en respons.

Met meer dan 7.000 medewerkers in 65 landen stelt Trend Micro organisaties in staat om hun verbonden wereld te vereenvoudigen en beveiligen.Kijk voor meer informatie op www.trendmicro.nl.



Voor meer informatie

Trend Micro
Ilona van Ginkel
E-mail: ilona_van_ginkel@trendmicro.com

Whizpr
Paul Maris / Martine Korthals
Tel: 0317 410 483
E-mail: trendmicro@whizpr.nl
Geplaatst:
Verstreken tijd: 3 jaar en 13 dagen
Trend Micro contact  

Logo Trend Micro
  020 - 2182270
  www.trendmicro.nl

Marcommit is hét full service B2B marketing bureau van Nederland! Wij helpen jouw bedrijf met offline en online marketing campagnes die écht werken.
 Spotlight  
Logo E-mergo
Logo Axians
Logo RawWorks B.V.
Logo Easystart Office
Logo Nautilus OT
Logo Northwave Cyber Security
Logo Companial
Logo 9altitudes Nederland BV
Logo ClockAssist
Logo Human Journey
Logo The Factory
Logo Hively Nederland B.V.
Logo Reflex Online BV
Logo Awareways
Logo Decos
Logo E-mergo
Logo Networking4ALL
Logo Frontline Solutions
Logo Nautilus OT
Logo Northwave Cyber Security
Logo Techone B.V.
Logo Frontline Solutions
Logo Frontline Solutions
Logo Guardian360 bv
Logo Techone B.V.
Logo BarTrack
Logo Facilitor
Logo Twenty Four Webvertising
Logo SCOS Automaton BV
Logo SCOS Automaton BV
Logo Aronto
Logo Marketingscriptie.nl
Logo Kaspersky
Logo NetApp
Logo reev
Logo Pegasystems
Logo NOBEARS
Logo Lightspeed
Logo Conclusion MBS
Logo Bo5 - online marketing
Logo NTT DATA
Logo Vertiv
Logo Techleap.nl
Logo AvePoint
Logo Bidfood
TARIEVEN
• Publicatie eenmalig €49

PUBLICATIEBUNDELS
6 voor €199
12 voor €349
Onbeperkt €499

EENMALIG PLAATSEN
Persbericht aanleveren

REGELMATIG PLAATSEN
Bedrijfsabonnement
CONTACT
Persberichten.com
JMInternet
Kuyperstraat 48
7942 BR Meppel
Nederland
info@persberichten.com
KvK 54178096

VOLGEN
@ICTBERICHTEN

ZOEKEN
IT bedrijf
IT PR-bureau
OVER ONS
Persberichten.com, hét platform voor IT/Tech persberichten

DATABASE
100713 persberichten
6764 bedrijfsprofielen
53 PR-bureauprofielen
15336 tags

KENMERKEN
• Behouden tekstopmaak
• Foto/illustratie/logo
• Downloadbare bijlages
• Profiel met socials
 
ProgressCommunications.euwww.lubbersdejong.nlwww.marcommit.nl
INFLUX PRProgressCommunications.euProgressCommunications.eu