Leading cybersecurity provider Trend Micro has uncovered a critical vulnerability in Microsoft Windows Defender SmartScreen, actively exploited by cyber threat group Water Hydra.
Discovered on December 31, 2023, by Trend Micro’s Zero Day Initiative™ (ZDI), this zero-day vulnerability, CVE-2024-21412, poses a significant risk globally. Trend Micro customers have been automatically safeguarded since January 17, 2024.
This vulnerability enables a sophisticated zero-day attack chain, facilitating a Windows Defender SmartScreen bypass used by cybercriminals to deploy the DarkMe Remote Access Trojan (RAT).
The motive behind these attacks is primarily financial, targeting high-stakes currency traders. Consequences range from data theft to ransomware.
Prompt action is crucial for organizations to mitigate risks and safeguard their digital infrastructure.
Renowned for proactive cybersecurity, Trend Micro issues virtual patches well in advance, providing a crucial layer of defense. Trend Micro’s proactive measures typically offer a lead time of 51 days ahead of Microsoft’s patch releases.
Utilizing layers of defense, including Intrusion Prevention System (IPS) capabilities, Trend Micro’s virtual patching effectively blocks exploitation of CVE-2024-21412, reducing risk. Trend Vision One™ offers visibility into vulnerabilities, facilitating proactive risk management.
Trend Micro’s Zero Day Initiative (ZDI) program swiftly identifies and addresses vulnerabilities, protecting customers from emerging threats. Collaboration between researchers and stakeholders is key to effectively addressing evolving cyber threats.
In conclusion, staying ahead of the curve with innovative solutions allows organizations to mitigate risks confidently and safeguard digital assets.
