2303 matches found
Private 5G Network Security Expectations Part 1
Are "new" protocols and "private" networks sufficient for your cybersecurity requirements?...
Log4Shell Vulnerability in VMware Leads to Data Exfiltration and Ransomware
We analyzed cases of a Log4Shell vulnerability being exploited in certain versions of the software VMware Horizon. Many of these attacks resulted in data being exfiltrated from the infected systems. However, we also found that some of the victims were infected with ransomware days after the data...
Conti vs. LockBit: A Comparative Analysis of Ransomware Groups
We compare the targeting and business models of the Conti and LockBit ransomware groups using data analysis approaches. This will be presented in full at the 34th Annual FIRST Conference on June 27, 2022...
Why It’s Time to Map the Digital Attack Surface
Trend Micro research reveals struggle to control cyber risks against mounting digital attack surfaces...
The Fault in Our kubelets: Analyzing the Security of Publicly Exposed Kubernetes Clusters
While researching cloud-native tools, our Shodan scan revealed over 200,000 publicly exposed Kubernetes clusters and kubelet ports that can be abused by criminals...
Bruised but Not Broken: The Resurgence of the Emotet Botnet Malware
During the first quarter of 2022, we discovered a significant number of infections using multiple new Emotet variants that employed both old and new techniques to trick their intended victims into accessing malicious links and enabling macro content...
Security Above and Beyond CNAPPs
How Trend Micro’s unified cybersecurity platform is transforming cloud security...
How to better manage your digital attack surface risk
As organizations shift to the cloud in droves, their digital attack surface continues to rapidly expand. And with the number of threats rapidly increasing, security leaders need to enhance their attack surface risk management. We explore how a unified cybersecurity platform can help improve your...
Cryptomining Overview for DevOps
Learn the impacts of cryptomining attacks for DevOps as well as mitigation strategies to bolster security without impacting time to market delivery...
MITRE Engenuity ATT&CK Tests
Trend Micro Vision One achieved a protection score of 100% in this year’s evaluation, proving once again that it is an invaluable tool that provides higher confidence detections for security operations teams...
Codex Exposed: How Low Is Too Low When We Generate Code?
In a series of blog posts, we explore different aspects of Codex and assess its capabilities with a focus on the security aspects that affect not only regular developers but also malicious users. This is the second part of the series...
Uncovering and Defending Systems Against Attacks With Layers of Remote Control
The Trend Micro™ Managed XDR team addressed a stealthy multilayered attack that progressed from an exploited endpoint vulnerability to the use of legitimate remote access tools including Remote Desktop Protocol RDP as its final means of intrusion...
Examining Log4j Vulnerabilities in Connected Cars and Charging Stations
In this entry we look into how Log4j vulnerabilities affect devices or properties embedded in or used for connected cars, specifically chargers, in-vehicle infotainment systems, and digital remotes for opening cars...
This Week in Security News - December 3, 2021
This week, learn about how Squirrelwaffle utilized ProxyLogon and ProxyShell to hack email chains. Also, read on a recent data breach of the Los Angeles Planned Parenthood Network...
ESG Economic Value Validation of XDR
Hear leading analyst firm ESG and Chase Renes, system administrator at Vision Bank, discuss the operational, business, and financial value of Trend Micro’s industry-leading XDR solution...
What You Can Do to Mitigate Cloud Misconfigurations
Cloud misconfigurations can become opportunities for cyberattacks or lead to data breaches. Organizations must mitigate them before incurring significant and costly consequences...
Post-pandemic growth starts with understanding risk
The digital transformations that accompanied the pandemic are here to stay. To succeed in the post-pandemic era, organizations must come to a shared understanding about cybersecurity as a critical element of business risk...
Global Operations Lead to Arrests of Alleged Members of GandCrab/REvil and Cl0p Cartels
A total of 13 suspects believed to be members of two prolific cybercrime rings were arrested as a global coalition across five continents involving law enforcement and private partners, including Trend Micro, sought to crack down on big ransomware operators...
November Continues Streak of Quiet Patch Tuesdays
November continues a recent pattern of relatively peaceful Patch Tuesday cycles. There were only six vulnerabilities rated as Critical this month, with 49 more rated as Important for a total of 55 for the month of November...
Make the Business Case for a Cloud Security Platform
Discover the projected ROI for our cloud security platform with the Forrester Total Economic Impact study and help win over the boardroom while enhancing your security posture...
This Week in Security News – October 22, 2021
In this week in security news, learn about a new backdoor from PurpleFox that utilizes WebSockets for more secure communication the link between the Sinclair ransomware attack and the cybercrime group Evil Corp...
India Releases Cybersecurity Guidelines for Power Sector
A first in the sector, the latest scheme aims to enhance cybersecurity readiness and the overall efficiency of the country’s distribution companies...
Analyzing Email Services Abused for Business Email Compromise
We analyzed five major types of email channels, and the techniques in keywords and domain names BEC actors use to appear legitimate to potential victims...
Simplify Security with Open Source Code Scanning Tools
Explore how source security tools can help mitigate the risk of utilizing open source libraries, saving development effort by using open source components while ensuring your final product’s security...
Expanded Cloud Misconfiguration & IaaS Security
Cloud One – Conformity has expanded its support for multi-clouds and Terraform users to add even more configuration checks so cloud projects are built on a foundation of best practice security and compliance...
Enhance Network Security for AWS Transit Gateway
Increase security and visibility for lateral and outbound network-loads using the look-aside inspection architecture...
This Week in Security News - September 24, 1021
Water Basilik Uses New HCrypt Variant to Flood Victims With RAT Payloads & Biden Administration Issues Sanctions To Counter Ransomware...
This Week in Security News - September 10, 2021
Biden announces cybersecurity initiative partnership, US Government seeks public feedback on draft federal zero trust strategy and more...
API Releases New Standard for Pipeline Control Systems
The latest version comes weeks after US President Biden announced a memo, calling on the improvement of control systems cybersecurity. It also expands the coverage of previous editions, covering all control systems...
Manage Cloud Compliance During Digital Transformation
Explore the latest compliance challenges and the top 3 issues facing security leaders in 2022 with Cristin Flynn Goodwin from Microsoft and Greg Young from Trend Micro...
With 5G coming, it’s time to plug security gaps
With 5G introducing new risks, many are finding they don’t have the visibility, tooling or resources to manage such networks securely...
BIOPASS RAT: New Malware Sniffs Victims via Live Streaming
We discovered a new malware that targets online gambling companies in China via a watering hole attack, in which visitors are tricked into downloading a malware loader disguised as a legitimate installer for well-known apps such as Adobe Flash Player or Microsoft Silverlight...
Tracking Cobalt Strike: A Trend Micro Vision One Investigation
Cobalt Strike is a well-known beacon or post-exploitation tool that has been linked to several ransomware campaigns. This report focuses on the process of uncovering its tracks in order to fully contain and remove a malware infection...
NukeSped Copies Fileless Code From Bundlore, Leaves It Unused
While investigating samples of NukeSped, a remote access trojan RAT, Trend Micro came across several Bundlore adware samples using the same fileless routine that was spotted in NukeSped...
Iron Tiger APT Updates Toolkit With Evolved SysUpdate Malware
This blog details how Iron Tiger threat actors have updated their toolkit with an updated SysUpdate malware variant that now uses five files in its infection routine instead of the usual three...
Mistakes were Made, Lessons were Learned
Mark Nunnikhoven, AWS Community Hero and Trend Micro Vice President of Cloud Research, explores how to leverage the AWS Well Architected Framework, and six core design principles to build in the AWS cloud with confidence...
Leveraging the Cost Optimization Pillar for Well-Architected Environments
In this article, we will explore the Cost Optimization pillar of the AWS Well-Architected Framework, examining best practices for designing processes that make it possible to go to market and optimize costs early on...
Go Try, Go Explore, Go Build in the Cloud
The cloud can provide speed, scalability, and savings. Learn how to access your current cloud environment to ensure that you move forward in your cloud journey with purpose...
Create Efficient Well-Architected Cloud Infrastructure
This article explores the Performance Efficiency pillar of the Amazon Web Services and Azure Well-Architected Framework. We will examine how to create performance efficiency in the compute, storage, database, and network elements of cloud infrastructures...
What the Cybersecurity Landscape Looks Like in 2021
Our 2021 security predictions are here, and there are many long-simmering cybersecurity risks and issues that have come to the forefront...
Beat Cybercriminals at Their Own Game
The fight against cybercrime never ends, but there’s a valuable resource that can give you an advantage—continuous research into the vulnerabilities across your diverse technology infrastructure. Get a leg up in the vulnerability race with our guide...
Digital Transformation Insights for Security Leaders
Digital transformation, especially in the cloud, is changing the way we solve problems. With new services, tools, and techniques surfacing every day, how do you navigate through it all?...
Deploy Jenkins Serverless-ly in Azure Services
Get a how-to guide on deploying Jenkins serverless-ly and securely utilizing Microsoft® Azure®-hosted services with Azure Container Instances, Azure Files, and Azure Bastion...
Securing Weak Points in Serverless Architectures
The big shift to serverless computing is imminent. Gain insights on the security considerations and recommendations for serverless environments that can help ensure your serverless deployments are secure...
Have You Considered Your Organization’s Technical Debt?
TL;DR Deal with your dirty laundry. Have you ever skipped doing your laundry and watched as that pile of dirty clothes kept growing, just waiting for you to get around to it? You’re busy, you’re tired and you keep saying you’ll get to it tomorrow. Then suddenly, you realize that it’s been three...
Cloud Security Gaps and Misconfigurations
Listen to this podcast from “The SecureWorld Sessions” to learn how to discover the security gaps and misconfigurations that may be lurking in your infrastructure after migrating to the cloud, and how you can simplify your security...
Protect Your Container Images and CI/CD Pipeline
Ever wonder if the container images you provide to customers have been checked for vulnerabilities, malware, and other malicious threats? Read this article on how to easily and quickly set up protection for your container images and CI/CD pipeline...
#LetsTalkCloud: The Unicorn Project Principles
Let's Talk Cloud: Season 02 // Episode 06: Host, Mark Nunnikhoven, interviews Trend Micro Developer, Madeline Van Der Paelt. Together they dive into the core principles enumerated in Gene Kim's book, The Unicorn Project...
Essential Strategies for Securing Smart Factories
With Industry 4.0, manufacturing organizations need to recognize the unique threats and risks facing them, and strategize towards addressing them...
Zero-Day Coverage Update – Week of July 23, 2018
We’re at the end of July and the Zero Day Initiative ZDI has published 873 advisories so far. That’s 273 advisories this month alone – and that’s just the tip of the iceberg! Earlier this week, ZDI announced the Targeted Incentive Program, which brings over $1,500,000 USD in special bounty awards...