2303 matches found
Emotet Spam Abuses Unconventional IP Address Formats to Spread Malware
We found waves of Emotet spam campaigns using unconventional IP addresses to evade detection...
Microservice Security: How to Proactively Protect Apps
Microservices are growing in popularity—how can development teams embed seamless security into the entire pipeline? Fernando Cardoso, solutions architect at Trend Micro, breaks it down for you...
Codex Exposed: Exploring the Capabilities and Risks of OpenAI’s Code Generator
The first of a series of blog posts examines the security risks of Codex, a code generator powered by the GPT-3 engine...
This Week in Security News - January 7, 2022
This week, read about Log4j vulnerabilities in connected cars and charging stations and how iOS malware can fake iPhone shutdowns to snoop on cameras and microphones...
Apache Log4j: Mitigation for DevOps
What can DevOps teams do to mitigate Apache Log4j risks? Explore how to secure your apps for today and against future vulnerabilities...
2022 Cybersecurity Trends for DevSecOps
Trying to adopt DevSecOps culture? Or already in the thick of it? Trend Research explores the cybersecurity trends for 2022 to enhance your security strategy and get the most out of DevSecOps...
Volatile and Adaptable: Tracking the Movements of Modern Ransomware
Trend Micro's tracking of modern ransomware, as well as of older families, shows which attacks are gaining momentum and which families are particularly dangerous for enterprises and private users...
Volatile and Adaptable: Tracking the Movements of Modern Ransomware
Trend Micro's tracking of modern ransomware, as well as of older families, shows which attacks are gaining momentum and which families are particularly dangerous for enterprises and private users...
Pushing Forward: Key Takeaways From Trend Micro’s Security Predictions for 2022
In this entry, we discuss several of our predictions that security professionals and decision-makers should know about to help them make informed decisions on various security fronts in the coming year...
A Guide to Ransomware: Prevention and Response
This article will provide guidelines aimed at helping readers understand how to detect and prevent ransomware and limit its effect...
Void Balaur and the Rise of the Cybermercenary Industry
One of the most prolific cybermercenaries is Void Balaur, a Russian-speaking threat actor group that has launched attacks against different sectors and industries all over the world...
Cybersecurity Trends from the Global Pandemic
The past 18 months have presented new technology and challenges at an accelerated pace. The only way to keep up with a continuous demand for new features, running workloads at scale, and ensuring applications are resilient is to stay one step ahead...
This Week in Security News - October 29, 2021
What to Expect in a Ransomware Negotiation & Cybercriminals Claim to Have Hacked the NRA...
Smart Car Makers VW & Nissan to Build Smart Factories
The car-making giants have taken big leaps to ensure they address the needs and trends brought by the rapid growth of technologies in the automotive industry...
Smart Car Makers VW & Nissan to Build Smart Factories
The car-making giants have taken big leaps to ensure they address the needs and trends brought by the rapid growth of technologies in the automotive industry...
CISA Releases Automotive Cybersecurity Guide
The guide helps Transportation System Sector partners understand the cyber-physical risks related to AVs and discusses mitigation strategies they can implement...
CISA Releases Automotive Cybersecurity Guide
The guide helps Transportation System Sector partners understand the cyber-physical risks related to AVs and discusses mitigation strategies they can implement...
Security Risks with Private 5G in Manufacturing Companies Part. 2
We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own...
New Bill to Require Cyber Attack Reporting in the US
The Cyber Incident Notification Act of 2021 would also require CISA to launch a program that would notify organizations of various vectors that malicious actors exploit...
Minimize SecOps Risk with Less Tools and More Security
Security leaders are seeking new ways to minimize SecOps security monitoring tools while increasing efficiency for SecOps teams. Read this article to learn more...
Reduce Risk with an Open Source Code Scanner
Explore the three risks that open source code scanning can mitigate, allowing SecOps and DevOps teams to bridge the gap for more secure application building...
APT-C-36 Updates Its Spam Campaign Against South American Entities With Commodity RATs
We have continued tracking APT-C-36, also known as Blind Eagle, since our research on this threat actor in 2019. We share new findings of APT-C-36’s ongoing spam campaign targeting South American entities...
Micro Frontend Guide: Technical Integrations
In this article, we will take a closer look at the technical considerations for developing web applications with a Micro Frontend...
TippingPoint Threat Protection System Certified by NetSecOPEN
Independent lab results prove the high performance of TippingPoint Threat Protection System...
Empowering T-Mobile Consumers
Here's how the T-Mobile breach may affect you, and what you can do to protect your data...
An expert discussion on XDR
Discover why industry veteran and former Gartner analyst, Greg Young, believes that XDR is the most exciting thing that has happened in cybersecurity in the last 20 years...
#LetsTalkSecurity: The New Digital Normal
Let's Talk Security: Season 02 // Episode 03: Host, Rik Ferguson, interviews Founder & CEO of MyConnectedHealth, Tyler Cohen Wood. Together they discuss the new digital normal...
Survey: Phishing & Ransomware Attacks are Top Concerns
Ransomware and phishing attacks will continue to be utilized and will likely see increases in their usage by malicious actors in targeting their victims. Learnings and recommendations from report to improve your prevention and response to these threats...
This Week in Security News June 25, 2021
Fake DarkSide campaign targets energy and food sectors and Tulsa police-citation data leaked by Conti Gang...
Protecting Against Recent Ransomware Attacks
Modern ransomware attacks targeting large enterprises continue to evolve from double to triple or even quadruple extortion tactics. Discover how to stay one step ahead with our case study of the ransomware family, Nefilim...
Security Resources Now on AWS CloudFormation Templates
Trend Micro is helping customers natively deploy Infrastructure as Code IaC resources for security the same way as cloud native infrastructure in collaboration with AWS CloudFormation...
This Week in Security News June 11, 2021
The post-pandemic security landscape and the banning of ransomware payments could create new crisis situations...
How Enterprises can Deflect Million-Dollar Ransomware Demands
Blue-chip businesses are not the only ones that have been hit hard by the recent ransomware strikes. We outline some best practices and countermeasures to avert any shakedowns at the hands of cybercriminals...
June Patch Tuesday: Internet Explorer Finally Laid to Rest
The June 2021 Patch Tuesday cycle offers good news to both IT and website administrators...
This Week in Security News June 4, 2021
Cyberattack hits JBS meat works in Australia, North America and DarkSide Targets Virtual Machines...
5 #TrendTips For Better File Storage Security
Here are 5 TrendTips to secure valuable files and objects stored in the cloud via services like Amazon S3...
Secure Cloud Migration 101
Cloud migration is a journey not a destination. Learn the basics of security for making the gradual switch so you can get the most out of what the cloud has to offer...
TeamTNT’s Extended Credential Harvester Targets Cloud Services, Other Software
We found new evidence that the cybercriminal group TeamTNT has extended its credential harvesting capabilities to include multiple cloud and non-cloud services...
Tips to avoid the new wave of ransomware attacks
There have been a lot of changes in ransomware over time. We want to help you protect your organization from this growing attack trend...
New Panda Stealer Targets Cryptocurrency Wallets
In early April, we observed a new information stealer called Panda Stealer being delivered via spam emails. Based on Trend Micro's telemetry, United States, Australia, Japan, and Germany were among the most affected countries during a recent spam wave...
How Cybercriminals Abuse OpenBullet for Credential Stuffing
In this blog, we detail how cybercriminals exploit OpenBullet, a legitimate web-testing software, to brute-force their way into targeted accounts...
5 #TrendTips for Lifecycle Security for Containers
Learn how to manage all of the moving parts when implementing pre-runtime and runtime container security...
This Week in Security News - April 9, 2021
Microsoft Teams and Zoom Hacked In $1 Million Competition and Preventing Ransomware While Working from Home...
Alleged Members of Egregor Ransomware Cartel Arrested
Trend Micro served as one of the cybersecurity partners of law enforcement authorities involved in the investigation...
Websites Hosting Cracks Spread Malware, Adware
We investigated pay-per-install PPI websites spreading multiple malware and adware, including CopperStealer and LNKR...
The XDR Payoff: Better Security Posture
As the extended detection and response XDR market grows and evolves, it’s a great opportunity to learn about the positive outcomes experienced by organizations that have invested in these capabilities...
What is Docker Content Trust and How do You Secure It?
Can your container image be trusted? Learn how Docker Content Trust DCT employs digital signatures for container image verification and manages trusted collections of content...
The Life Cycle of a Compromised (Cloud) Server
Trend Micro Research has developed a go-to resource for all things related to cybercriminal underground hosting and infrastructure. Today we released the second in this three-part series of reports which detail the what, how, and why of cybercriminal hosting see the first part here. As part of th...
Securing Remote Work: More Connectivity and Visibility
When the pandemic hit, no one knew the impact it was going to have on the world. And while having connectivity and visibility became increasingly important for humanity, it also quickly became central for employees to work from home securely...
Healthcare Enterprises Share Risk Reduction Insight
Healthcare organizations are subject to strict regulations, including data security and privacy. Three enterprises discuss risk reduction within a sector where a data leak could prove disastrous...