24 matches found
IDGraphs: Intrusion Detection and Analysis Using Stream Compositing
Traffic anomalies and attacks are commonplace in today's networks and identifying them rapidly and accurately is critical for large network operators. For a statistical intrusion detection system IDS, it is crucial to detect at the flow-level for accurate detection and mitigation. However, existi...
How CB LiveOps Helps with Vulnerability Assessment
Security and IT Operations teams often have no reliable way to assess the current state of endpoints across their enterprise, leading to increased risk of breach, inability to make informed remediation decisions, and unnecessary spending on infrastructure maintenance. A real-time endpoint query a...
How threat actors are using SMB vulnerabilities
Some of the most devastating ransomware and Trojan malware variants depend on vulnerabilities in the Windows Server Message Block SMB to propagate through an organization’s network. Windows SMB is a protocol used by PCs for file and printer sharing, as well as for access to remote services. A pat...
CoinVault Ransomware Authors Sentenced to 240 Hours of Community Service
Almost three years after the arrest of two young Dutch brothers, who pleaded guilty to their involvement in creating and distributing CoinVault ransomware malware, a district court in Rotterdam today sentenced them to 240 hours of community service. In 2015, the two suspects — Melvin 25-year-old...
The state of malicious cryptomining
While cryptocurrencies have been around for a long time and used for legitimate purposes, online criminals have certainly tarnished their reputation. Unfortunately, the same benefits offered by these decentralized and somewhat anonymous digital currencies were quickly abused to extort money, as w...
Now you see me: Exposing fileless malware
Attackers are determined to circumvent security defenses using increasingly sophisticated techniques. Fileless malware boosts the stealth and effectiveness of an attack, and two of last years major ransomware outbreaks Petya and WannaCry used fileless techniques as part of their kill chains. The...
A worthy upgrade: Next-gen security on Windows 10 proves resilient against ransomware outbreaks in 2017
Adopting reliable attack methods and techniques borrowed from more evolved threat types, ransomware attained new levels of reach and damage in 2017. The following trends characterize the ransomware narrative in the past year: Three global outbreaks showed the force of ransomware in making...
Kaspersky Security Bulletin: Story of the year 2017
Download the Kaspersky Security Bulletin: Story of the year 2017 Introduction: what we learned in 2017 In 2017, the ransomware threat suddenly and spectacularly evolved. Three unprecedented outbreaks transformed the landscape for ransomware, probably forever. The attacks targeted businesses and...
Know your threats: the nine scariest malware monsters
It's been a particularly ghoulish year in cybersecurity, from Russian hacks to ransomware outbreaks. The bad boogey man in the black hoodie has been pulling one over the collective public. It's dark and creepy, but users refuse to stop peeking behind the door. It's enough to make even the most...
Supporting Healthcare Organizations Through IT Recovery
As we all return to work from the summer holidays, we at Trend Micro reflect on what we have seen in the threat landscape over the first six months of 2017 with the release of our 2017 Mid-Year Security Roundup. It takes me back to the two major attacks that we witnessed, and I was ‘lucky’ enough...
Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene
In the first six months of 2017, ransomware threats reached new levels of sophistication. The same period also saw the reversal of a six-month downward trend in ransomware encounters. New ransomware code was released at a higher rate with increasing complexity. Two high-profile ransomware inciden...
Report: Second quarter dominated by ransomware outbreaks
The second quarter of 2017 brought ransomware to unprecedented levels with worldwide outbreaks that went almost out of control. In scenarios reminiscent of yesteryears worms, WannaCry created global panic as it used a critical vulnerability in the SMBv1 protocol to propagate like wildfire. Within...
Windows 10 platform resilience against the Petya ransomware attack
Note: Read our latest comprehensive report on ransomware: Ransomware 1H 2017 review: Global outbreaks reinforce the value of security hygiene. The Petya ransomware attack on June 27, 2017 which we analyzed in-depth in this blog may have been perceived as an outbreak worse than last month's...
Threat Outbreak Alert RuleID24199: Email Messages Distributing Malicious Software on August 11, 2016
Medium Alert ID: 48436 First Published: 2016 August 11 12:48 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID24199 may contain the following files: Name |...
Threat Outbreak Alert RuleID21015: Email Messages Distributing Malicious Software on February 10, 2016
Medium Alert ID: 43491 First Published: 2016 February 10 15:07 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID21015 may contain the following files: Name |...
Threat Outbreak Alert RuleID20446: Email Messages Distributing Malicious Software on January 21, 2016
Medium Alert ID: 43135 First Published: 2016 January 21 16:10 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID20446 may contain the following files: Name |...
Threat Outbreak Alert RuleID19608: Email Messages Distributing Malicious Software on November 24, 2015
Medium Alert ID: 42259 First Published: 2015 November 24 21:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID19608 may contain the following files: Name |...
Threat Outbreak Alert RuleID15470: Email Messages Distributing Malicious Software on May 24, 2015
Medium Alert ID: 38989 First Published: 2015 May 26 13:27 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID15470 may contain the following files: Name | Size...
Threat Outbreak Alert RuleID14229: Email Messages Distributing Malicious Software on March 25, 2015
Medium Alert ID: 38034 First Published: 2015 March 25 13:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID14229 may contain the following files: Name | Si...
Unpatched Bugs, Windows XP End of Life and Public Disclosure
Windows XP security support ends Tuesday and until now, most of the public hand-wringing over XP’s end-of-life has been about the potential for malware outbreaks against unpatched vulnerabilities that have been stockpiled by hackers anxiously awaiting April 8, 2014. But what about vulnerabilities...