Trend Micro
Coverage of Trend Micro in the Nexus archive.
- Trend Micro warns of Apex One zero-day exploited in the wild
Trend Micro has disclosed a zero-day vulnerability in its Apex One security software that is actively being exploited in the wild against Windows systems. The Japanese cybersecurity company has released a security advisory to address this critical flaw affecting its endpoint protection product.
- CISA Adds Exploited Langflow and Trend Micro Apex One Vulnerabilities to KEV
CISA added two actively exploited vulnerabilities to its Known Exploited Vulnerabilities catalog: CVE-2025-34291 in Langflow (CVSS 9.4) and a flaw in Trend Micro Apex One. These security flaws have been identified as actively exploited in the wild.
- Microsoft addresses 137 vulnerabilities in May’s Patch Tuesday, including 13 rated critical
Microsoft addressed 137 vulnerabilities in its May Patch Tuesday update, including 13 rated critical, with no actively exploited zero-days reported. The vulnerabilities affect various Microsoft products and components, such as Azure and Microsoft Dynamics 365. Researchers attribute the high volume of vulnerabilities to the growing use of artificial intelligence models in finding previously uncovered defects.
- China-Linked Hackers Target Asian Governments, NATO State, Journalists, and Activists
Cybersecurity researchers have uncovered a China-linked espionage campaign targeting government and defense sectors in South, East, and Southeast Asia, as well as a NATO European government. Trend Micro attributes the attacks to a threat group it tracks as SHADOW-EARTH-053, which has targeted journalists and activists.
- APT28 Deploys PRISMEX Malware in Campaign Targeting Ukraine and NATO Allies
APT28, a Russian threat actor also known as Forest Blizzard and Pawn Storm, has launched a spear-phishing campaign targeting Ukraine and NATO allies using a new malware suite called PRISMEX. The malware employs advanced techniques like steganography, COM hijacking, and abuse of legitimate cloud services for command-and-control, according to Trend Micro.