2303 matches found
Honda to Start Selling Smart Car Data
The auto giant is just one of many auto companies monetizing smart car data, creating a new industry set to be worth $400 billion by 2030...
How Quantum Computers Can Impact Security
While it might be too early to completely overhaul security protocols to prepare for quantum computing — not to mention that there is currently no post-quantum cryptographic standard existing at the moment — it would be a good idea for organizations to start planning for the future...
Expanded Cloud Misconfiguration & IaaS Security
Cloud One – Conformity has expanded its support for multi-clouds and Terraform users to add even more configuration checks so cloud projects are built on a foundation of best practice security and compliance...
This Week in Security News – October 1, 2021
Welcome to our weekly roundup, where we share what you need to know about cybersecurity news and events that happened over the past few days. This week, learn about Zloader, a notable recent ZBOT variant. Also, read on a recently introduced bill that would mandate ransom payment reporting...
Mac Users Targeted by Trojanized iTerm2 App
We go into more detail about a fake version of the iTerm2 app that downloads and runs malware, detected by Trend Micro as TrojanSpy.Python.ZURU.A, which collects private data from a victim’s machine...
A Kubernetes Pod Security Policy Alternative
A quick look at the deprecation of Kubernetes Pod Security Policy and how to ensure your clusters are protected going forward...
IoT and Zero Trust Are Incompatible? Just the Opposite
IoT is a big security headache for a lot of reasons. So how can these be part of a Zero Trust architecture?...
CISA Reports Top Vulnerabilities From Remote Work
Trend Micro’s Next-Generation IPS protects organizations from threats as attackers now target remote work-related vulnerabilities...
Securing AWS Infrastructure with Trend Micro Workshop
In this workshop, you’ll learn how to leverage infrastructure as code IaC and Security to automate your cloud security efforts. If you’re interested in making cloud security more efficient, automated, proactive, and accessible, this workshop is for you!...
What are Open Source Software License Risks?
Explore the risks of using open source licenses and what tools to use to mitigate risks for safer, more legally compliant applications...
AT&T, GM Make 5G Connected Car Deal
The collaboration aims to enhance various features on GM’s connected cars, with the hope of having millions of vehicles with 5G connectivity on the road by 2024...
New Campaign Sees LokiBot Delivered Via Multiple Methods
We recently detected an aggressive malware distribution campaign delivering LokiBot via multiple techniques, including the exploitation of older vulnerabilities...
Optimize Your Incident Response Planning with the MITRE Framework
Threat research experts discuss the evolving landscape and how the MITRE ATT framework can help optimize incident response across your organization...
AWS Marketplace Talks Secure Digital Transformation
Spurred on by the pandemic, digital transformation continues to accelerate. Chris Grusz, director of AWS Marketplace and Control Tower, discusses how security teams can leverage this transformation to securely innovate and drive better business outcomes...
Cybercrime: Today and the Future
Trend Micro Research experts Erin Sindelar and Rik Ferguson use current trends and data to paint a picture of cybercrime in 2021 and shine a light on what it could look like in 2030...
Respect in Security: Anti-Harrassment Initiative
Respect in Security aims to make a concrete difference to the levels of abuse and harassment that are unfortunately all too common in our industry...
Reduce Instances of Covid-19 Phishing Email Attacks
The Covid-19 pandemic has created an unlimited supply of news and topics for cybercriminals to utilize in their attacks, as well as major organizations to spoof. Learn what your organization can do to combat these timely threats...
The Underground Exploit Market and the Importance of Virtual Patching
Over the past two calendar years, we conducted research on the underground exploit market to learn more about the life cycle of exploits, the kinds of buyers and sellers who transact, and the business models that are in effect in the underground...
#NoFilter: Exposing the Tactics of Instagram Account Hackers
What tactics do Instagram account hackers use? What do these cybercriminals do with stolen accounts? How can users protect their accounts? We look into Instagram account hacking incidents from a security researcher’s perspective and share recommendations for users of Instagram and other social...
How to navigate open source licensing risks
Vulnerabilities aren't the only risk that comes with open source software use. Learn how you can best mitigate licensing risks to ensure your team is meeting all legal requirements while building with open source code...
MITRE Engenuity™ ATT&CK Evaluations & Framework
With the MITRE ATT Framework, you can simplify security communications across your organization while providing visibility to your security teams...
Increase visibility for on-premise and cloud workloads
Ensure each of your cloud workloads are properly managed, protected, and patched - without the slow down...
5 #TrendTips To Build Better in the Cloud
You have multiple cloud service provider accounts and you want to make sure that you are deploying everything in a well-architected fashion to avoid future security headaches. Here's where to begin...
Network Policies to Help Reduce Risk and Improve Security
Cloud workloads frequently require internet access, and as we know, anything accessing the internet can be breached. This article explores simple tactics such as access level restriction and overlaying threat intelligence to enhance your security posture...
TeamTNT Targets Kubernetes, Nearly 50,000 IPs Compromised in Worm-like Attack
We have found and confirmed close to 50,000 IPs compromised by this attack perpetrated by TeamTNT across multiple clusters. Several IPs were repeatedly exploited during the timeframe of the episode, occurring between March and May...
ZDI Tops Omdia Vulnerability Disclosures Again
The Trend Micro Zero Day Initiative ZDI again dominated the number of disclosed vulnerabilities for the 13th year in a row based on Omdia’s research into the vulnerability disclosure market. Read More...
Container Security First Steps: Image and Registry Scanning
Learn to secure your containers with image and registry scanning. This article explores key container vulnerabilities, and how to guard against them with cloud security tools like policy-based deployment control...
Stop Ransomware Groups Who Weaponize Legitimate Tools
The ongoing game of cat and mouse – cybercriminals vs security teams – continues with the latest evolution in ransomware...
What We Know About the DarkSide Ransomware and the US Pipeline Attack
Trend Micro Research found dozens of DarkSide ransomware samples in the wild and investigated how the ransomware group operates and what organizations it typically targets...
Protect Kubernetes Clusters with Admission Controller
Discover the power of admission controllers. Container security can be challenging, but this article will teach you how to guard your Kubernetes clusters against threats by screening containers before they even initialize...
DevOps Teams can meet NIST compliance standards with automation
Meet business compliance needs without interrupting your workflow...
Open source protection that security teams will love
Open source code is the gateway to quick application deployment – see how Trend Micro and Snyk have partnered up to create developer-friendly security for your open source components...
Open source protection that security teams will love
Open source code is the gateway to quick application deployment – see how Trend Micro and Snyk have partnered up to create developer-friendly security for your open source components...
Physical Datacenter Security and Threat Mitigation
Physical security may have more of an impact on cloud operations than you think...
MITRE ATT&CK for Containers: Why It Matters
The complexity of containers demands something to make sense of it all. Builders, operations teams and security teams need a single language to understand the risk associated with containers...
This Week in Security News - April 30, 2021
Hacktivism’s reemergence explained and Hello ransomware uses updated China Chopper web shell...
Weaponized Deepfakes Are Getting Closer to Reality
The first malicious use of video deepfakes may have been observed, making one of Trend Micro’s long-standing predictions a looming reality...
How to protect serverless and container applications with RASP
With increased demand for container and serverless technology, the need for enhanced security is inevitable. Learn how to secure serverless and container applications using runtime application self-protection RASP...
Tor-Based Botnet Malware Targets Linux Systems, Abuses Cloud Management Tools
We found a botnet malware campaign targeting Linux systems, abusing the Tor network for proxies, and exploiting cloud infrastructure management tools for intrusion...
Carbanak and FIN7 Attack Techniques
What happens in Carbanak and FIN7 attacks? Here are some techniques used by these financially motivated threat groups that target banks, retail stores, and other establishments...
Could the Microsoft Exchange breach be stopped?
A look at the latest Microsoft zero-day exploits and how Trend Micro could help protect you...
5 #TrendTips to Implement Application Security
We’ve compiled 5 TrendTips to help you get started with bolstering your application security posture...
What’s new on AWS Lambda in 2021
This article explores new updates and documentation for AWS Lambda in 2021. Lambda launched several new updates including run container images, cost saving initiatives, and expanded compute capacity...
Going Beyond Built-in Security: Email Threats in 2020
Explore the need for going beyond built-in Microsoft 365 and Google Workspace security based on email threats detected in 2020...
Cloud Misconfigurations : Avoid Breaches
Check out this infographic on cloud misconfigurations to gain insight on the major causes of misconfigurations, the impacts of those misconfigurations, and tips on how to avoid them so you can continue to build confidently in the cloud...
How XDR can enable your enterprise
Extended detection and response XDR provides enhanced visibility, detection, and response across your entire IT infrastructure—enabling you to be more resilient in the face of ever-changing attacks...
Guardrails to Avoid Cloud Misconfigurations
The stakes and opportunities are higher than ever to ensure that strong operational excellence strategies are implemented. Explore how to help ensure you are holding up your end of the bargain as part of your CSP’s Shared Responsibility Model...
Top Cloud Security Challenges for 2021
Hear from Mark Nunnikhoven, VP of Cloud Research at Trend Micro, on the top cloud security challenges that will be faced in 2021...
Curb Your Cyber Risk
With global cyber risk at an all-time high, understand how you can lower yours...
1H 2020 Cyber Security Defined by Covid-19 Pandemic
When we published our 2020 Predictions report in December, we didn’t realize there was a global pandemic brewing that would give cybercriminals an almost daily news cycle to take advantage of in their attacks against people and organizations around the world. Malicious actors have always taken...