CISA: Hackers Exploiting Vulnerability in Product of Taiwan Security Firm TeamT5
Summary
CISA added a vulnerability in TeamT5's ThreatSonar Anti-Ransomware to its Known Exploited Vulnerabilities (KEV) catalog. The vulnerability has been patched in 2024, indicating active exploitation in the wild. Defenders should apply the patch immediately.
IFF Assessment
FOE
Active exploitation of a vulnerability, especially in a security product, is detrimental to defenders.
Severity
9.0
Critical
(AI Estimated)
Defender Context
The addition to the KEV catalog means the vulnerability is actively being exploited, raising the urgency for patching. Defenders using ThreatSonar Anti-Ransomware should verify they have applied the latest patches. The exploitation of security products is a worrying trend as it undermines the entire security stack.