Trend Micro antivirus zero-day used in Mitsubishi Electric hack | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

		Trend Micro antivirus zero-day used in Mitsubishi Electric hack (zdnet.com)
		2 points by WalterSobchak on Jan 26, 2020 \| hide \| past \| favorite \| 1 comment

ENOTTY on Jan 26, 2020 [–]

> A source with knowledge of the attack told ZDNet that the hackers exploited CVE-2019-18187, a directory traversal and arbitrary file upload vulnerability in the Trend Micro OfficeScan antivirus.

Security software is like any other software in that it needs to obey the principle of least privilege.

Join us for AI Startup School this June 16-17 in San Francisco!
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact