2303 matches found
VMworld 2017 Recap
VMware featured a number of great announcements at VMworld 2017 including VMware Cloud on AWS. VMware customers can now run new or existing virtualized workloads in the AWS cloud while maintaining their current VMware tools and skill sets. This announcement provides an important shift in the hybr...
The Inner Workings of Fake News
The moniker of fake news has been utilized in numerous circles recently, including within government, press and cybersecurity, but this concept actually dates back far beyond the past year. Intentionally misleading propaganda materials have been a linchpin of communication for years, particularly...
This Week in Security News: Watering Hole Campaign Operation Earth Kitsune Spying on Users’ Systems and Fancy Bear Imposters Are on a Hacking Extortion Spree
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about a watering hole campaign Trend Micro dubbed ‘Operation Earth Kitsune’ that is spying on users’ systems through compromised...
This Week in Security News: Fake Apps on iOS and Google Play and Social Media Security Issues
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about the evolution of EDR to XDR and why your CISO should care, stock trading app attacks and fake gambling apps. Also, read about ho...
What Hacker History Can Tell Enterprises About Future Attack Strategy
There's an oft-quoted saying: "History repeats itself." For those that believe in the cyclical patterns that sometimes emerge over time, this aphorism definitely rings true. Today, we'll be applying this type of thinking to the cybercrime realm. Over the course of hacker history, numerous trends...
Closing the Gap: An Exciting Initiative to Drive More Gender Diversity in Tech
We all know there’s a global IT skills crisis. In cybersecurity things are even worse, with a shortfall of nearly three million roles estimated today — 500,000 of which are in North America. Today women comprise just 24% of the workforce yet half of the global population. Why is this? Women were...
Update Now: PaperCut Vulnerability CVE-2023-27350 Under Active Exploitation
Two vulnerabilities in PaperCut have been found, and one of them is being actively exploited in the wild. This blog entry provides a summary of the vulnerabilities, and includes security guidance for IT and SOC professionals...
Three Common Email Security Mistakes That MSPs Make
MSPs can generate recurring revenue by being proactive about educating customers about email threats and how to defeat them—if they avoid three common mistakes. Businesses have come to rely on cloud email and file-sharing applications for communication and productivity. But, too often, they assum...
This Week in Security News: Ethics and Law in the Dark Web
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn how Trend Micro software can aid in safely securing containers on the AWS Cloud. Also, how the dark web has become a new advertising...
This Week in Security News: Spam Campaigns and Vulnerable Infrastructures
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, see how cybercriminals have learned to become more creative with malware through spam campaigns. Also, understand why securing energy and...
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 19, 2018
Back in 2005, there were a number of us in a conference room in Austin, Texas working to determine how we would structure it, what we would name it, and how to deal with the potential backlash that would come after we announced it. What is it? I’m referring to our Zero Day Initiative. It’s been a...
3 Ways for MSPs to Increase Their Managed Security Footprint
Managed service providers looking to increase their business often face the choice of whether to focus on finding new customers or expanding their existing base. But there’s a growing opportunity making the latter option especially appealing. The small and midsize businesses that comprise the bul...
Trend Micro Named Best Company To Work For In Taiwan
Trend Micro prides itself on caring first about people – both in our external mission and internally with our employees. As this issue is close to the hearts of our executives, we are always very proud to be recognized by related awards. The HR Asia Awards Taiwan recently named Trend Micro as one...
This Week in Security News: Malware and Machine Learning
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about an infectious miner-malware and how malware can hide form AV Solutions. Also, understand how to use machine learning to detect...
How Machine Learning can Expose and Illustrate Network Threats
Although machine learning algorithms have been around for years, additional use cases are being discovered and applied all the time, particularly when it comes to network and data security. As years have passed, the skills and sophisticated approaches being utilized by hackers have risen in...
Incident Response In The Public Eye
Cyberattacks happen constantly. Every day organizations are attackers online whether they realize it or not. Most of these attacks are passing affairs. The mere fact that systems are on to the internet makes them a target of opportunity. For the most part, these attacks are non-events. Security...
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of June 4, 2018
It was a busy day yesterday, with Adobe issuing four emergency patches for their Flash Player, including one for a zero-day being actively exploited in the wild. Adobe has indicated that CVE-2018-5002 was discovered being used in limited, targeted attacks on Windows users in the wild. The attacks...
The connected workforce: The importance of protecting home and corporate networks
In the current corporate and employee landscape, workers are leveraging a variety of endpoints from a range of different locations to access enterprise systems and assets. Staff members are no longer chained to their desks, and many employers and workers alike have begun taking advantage of...
Fileless Malware: A Hidden Threat
Malware is advancing at an unprecedented rate, with four new strains discovered every minute, Slate reported. This is already a lot for businesses to worry about and it doesn't even cover the other threats that haven't been detected. Many attackers have evolved their techniques to evade common...
Petya expands its scope: A global ransomware threat
Ransomware remains a formidable threat for individual users and businesses alike, particularly as new sample families continue to be discovered by security researchers. What makes ransomware so dangerous is the fact that victims are denied access to their most important files and data - a problem...
This Week in Security News: Phishing Campaigns and a Biometric Data Breach
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about ever-increasing amounts of phishing campaigns and how Trend Micro caught 2.4 million attacks of this type — a 59% increase from...
WiFi Protection in Public Places
WiFi Internet has added much convenience to our daily lives, with its easy accessibility in public places such as restaurants, hotels, and cafes; malls, parks, and even in airplanes, where we can connect online for faster transactions and communication. Like any online technology, however, it’s...
Today’s Data Breach Environment: An Overview
By now, companies and consumers alike are well aware of the threat of a data breach. Large and small businesses across every sector have been targeted, and many customers are now familiar with the notification that their username, password or other details might have been compromised. The...
NIST Cybersecurity Framework Series Part 5: Recover
The best way to stop a cyber attack is to prevent it from taking place in the first place. While this is certainly true, the level of sophistication and persistence seen among today's hackers can often negate this strategy. A proactive approach to data security is an absolute must, but chief...
Customer-driven Rapid Innovation for Hybrid Cloud Security
Cyber threats have no boundaries; they come in new and evolving forms, capable of striking at any time … so it becomes important that your threat protection extends beyond conventional boundaries as well. In the past, on premise versions of security solutions were held up by long development cycl...
Detecting PwnKit (CVE-2021-4034) Using Trend Micro™ Vision One™ and Cloud One™
This blog discusses how CVE-2021-4034 can be detected and blocked using Trend Micro™ Vision One™ and Trend Micro Cloud One™...
This Week in Security News: How a Partnership can Advance DevSecOps and Cybersecurity Issues in the Midwest and South U.S.
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about how Trend Micro’s partnership with Snyk will advance DevSecOps. Also, read about cyber attacks affecting hospitals in Alabama an...
The Importance of Employee Cybersecurity Training: Top Strategies and Best Practices
For those responsible for overseeing the data protection and cybersecurity of an organization, it's a familiar storyline: "Employee opens email attachment and infects business with ransomware." Headlines to this effect are nothing new. Even the most advanced security solutions can't completely...
This Week in Security News: Bank Robberies and Whaling
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, business leaders share their tips on keeping their companies safe, hackers stole from a Russian central bank, and Google reveals a new...
Detecting Exploitation of Local Vulnerabilities Through Trend Micro Vision One™ and Cloud One™
We provide a guide to detecting Dirty Pipe, a Linux kernel vulnerability tracked as CVE-2022-0847...
Tracking CVE-2021-26084 and Other Server-Based Vulnerability Exploits via Trend Micro Cloud One and Trend Micro Vision One
We look into campaigns that exploit the following server vulnerabilities: CVE-2021-26084, CVE-2020-14882, CVE-2020-14750, and CVE-2020-14883...
What Happens When Victims Pay Ransomware Attackers?
For many hackers around the globe, ransomware infections have become a lucrative business. Although these types of malware samples have been around for years now, they continue to spur success - and high monetary profits - for attackers. In fact, according to a statement from U.S. Deputy Attorney...
Earth Preta Mixes Legitimate and Malicious Components to Sidestep Detection
Our Threat Hunting team discusses Earth Preta’s latest technique, in which the APT group leverages MAVInject and Setup Factory to deploy payloads, bypass ESET antivirus, and maintain control over compromised systems...
This Week in Security News: Phishing Attacks and Ransomware
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about schemes used in phishing and other email-based attacks. Also, learn how ransomware continues to make a significant impact in the...
This Week in Security News: Cybersecurity Skills Gap and Legislature
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn how the cybersecurity skills gap is affecting organizations. Also, learn how a bipartisan bill is working to close the gap. Read on:...
When Phishing Starts from the Inside
A growing concern of security professionals is internal phishing attacks - phishing emails sent from one trusted user to another of the same organization. Internal phishing emails are used in multi-stage attacks in which an email account is owned either by controlling the users device with...
This Week in Security News: 15 Billion Credentials Currently Up for Grabs on Hacker Forums and New Mirai Variant Expands Arsenal
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, read about how fifteen billion usernames and passwords for a range of internet services are currently for sale on underground forums. Also,...
Cyber Workforce DevOps: A Way to Close the Cyber Skills Gap
I personally had a great week last week. Trend Micro was very fortunate to participate in and sponsor the National Institute of Standards and Technology NIST, National Initiative for Cybersecurity Education NICE 2018 Conference and Expo and the IBM Cyber Day 4 Girls at Florida International...
Unveiling the Fallout: Operation Cronos' Impact on LockBit Following Landmark Disruption
Our new article provides key highlights and takeaways from Operation Cronos' disruption of LockBit's operations, as well as telemetry details on how LockBit actors operated post-disruption...
Why XDR Is A Big Deal, and Is Different from SIEM and Platforms
In Jon Clay’s post, he does a great job of explaining the evolution from EDR to XDR. In short, he explained that Endpoint Detection and Response EDR is great, but that having sources of information beyond endpoint is better. The ‘X’ in XDR is essentially ‘many’ or whatever we can add to provide a...
This Week in Security News: IIoT Threats and Malware Apps
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about security threats directed at smart manufacturing environments. Also, learn why malware installed from the Android app store...
The Cloud in 2019: Current Uses and Emerging Risks
In the current tech landscape, one would be hard-pressed to find an organization that operates without the help of cloud environments and capabilities. From data storage and document sharing to enabling remote access and communication, the cloud represents the most critical linchpin of today's...
This Week in Security News: Holiday Cybercriminals & Cryptomining Malware
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn the common threats and the best practices for defending against cybercriminals during November’s online shopping season. Also, see the...
VPN 101 – Part 2: How to Set Up the VPN/Content Shield in Trend Micro Mobile Security for iOS
Submitted by Brook Stein When you use Content Shield in Trend Micro Mobile Security for iOS, you’re protected from web threats across all iOS browsers and in apps that load websites. If you activate Age filters for your family members, they’re also protected from going to inappropriate websites...
Trend Micro Achieves “Recommended” Rating from NSS Labs in Data Center IPS Group Test
One of the key use cases for our customers is the protection of their data center environments, which can involve moving off the perimeter into the data center or segmenting their data center from the rest of the organization. It is imperative that a data center security solution not only deliver...
Towards a Safer Internet for All: Winners of New Brunswick Video Contest Announced
Today more than ever, society needs to come together to work towards a better and safer future for all our children. This doesn’t just mean members of the public: companies can and should play a key role in helping to support worthy causes. Global citizenship and cyber security are two issues tha...
This Week in Security News: How the Cybercriminal Underground Has Changed in 5 Years and the NSA Warns of New Sandworm Attacks on Email Servers
Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, learn about how, over the past five years, the cybercriminal underground has seen a major shift to new platforms, communications channels,...
The Shared Responsibility Model
I’m often asked what the biggest cyberthreats are in the cloud. When people pose that question, they seem to be expecting an answer on par with a Hollywood movie plot. The truth is far simpler. The number one threat in the cloud today is service misconfigurations. Despite the cloud’s clear...
How to get Ahead of Vulnerabilities and Protect your Enterprise Business
Security vulnerabilities are popping up all the time, and can put any business that uses technological assets at risk. In a nutshell, vulnerabilities represent the ideal opportunity for malicious actors to break into systems and wreak all types of havoc. From data theft to information compromise...
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of November 13, 2017
The dreaded white, blank screen in Microsoft Word is taunting me, with its blinking cursor asking for words to be written. Just when I thought I wouldn’t get any inspiration for this week’s blog, inspiration came to me from beyond through our late CTO Raimund Genes. Earlier this week, the third...