TeamTNT Upgrades Arsenal, Refines Focus on Kubernetes and GPU Environments

Using a new batch of campaign samples, we take a look at its more recent cybercrime contributions and compare them with its previous deployments to demonstrate the group’s use of upgraded tools and payloads...

Void Balaur and the Rise of the Cybermercenary Industry

One of the most prolific cybermercenaries is Void Balaur, a Russian-speaking threat actor group that has launched attacks against different sectors and industries all over the world...

November Continues Streak of Quiet Patch Tuesdays

November continues a recent pattern of relatively peaceful Patch Tuesday cycles. There were only six vulnerabilities rated as Critical this month, with 49 more rated as Important for a total of 55 for the month of November...

Compromised Docker Hub Accounts Abused for Cryptomining Linked to TeamTNT

In October 2021, we observed threat actors targeting poorly configured servers with exposed Docker REST APIs by spinning up containers from images that execute malicious scripts...

Cybersecurity Trends from the Global Pandemic

The past 18 months have presented new technology and challenges at an accelerated pace. The only way to keep up with a continuous demand for new features, running workloads at scale, and ensuring applications are resilient is to stay one step ahead...

Build a Modern Ransomware Protection Strategy

With ransomware heavily targeting critical industries in 2021, find out how you can establish a strong cybersecurity defense strategy against this evolving, costly threat...

Discovering the Exploitable Security Gaps in Remote Work Spaces

Unprotected smart devices that populate home offices are seen as low-hanging fruit by cybercriminals. These machines can be compromised and used in criminal campaigns or leveraged to gain deeper access to home networks...

This Week in Security News - November 5th, 2021

This week, learn about what the future of cybercrime could potentially look like by the start of the next decade, according to Trend Micro’s Project 2030. Also, read on how a hacker stole $784k in crypto through SIM swaps...

A Review and Analysis of 2021 Buer Loader Campaigns

Buer Loader has established itself well in the underground market and has since seen continuous development. In this blog entry, we review its 2021 campaigns, tactics, and activity...

Make the Business Case for a Cloud Security Platform

Discover the projected ROI for our cloud security platform with the Forrester Total Economic Impact study and help win over the boardroom while enhancing your security posture...

Ctrl+Alt+Truth. Welcome to the future of cybercrime

Welcome to 2030, to the nation of New San Joban, where a single keystroke can alter reality. Discover what a fully converged digital world means for the future of cybersecurity, and how you can stay ahead of the bad guys...

Integrate Cybersecurity Incident Response in DevSecOps

This article examines the need for cross-functional integration and integrated communication between development and security teams to prevent communication dead zones and avoid delays in alerting and remediation...

Overview: OWASP Top 10 2021

The long-awaited OWASP Top 10 2021 draft edition is here. We take you through the changes, new vulnerabilities, and the triggers, enabling you to secure your apps against the latest threats...

Do Home Hackers Compromise Business Security?

The most recent Pwn2Own Fall 2021 Pwn2Own Austin includes more IoT entries than ever. This gives us an opportunity to probe today’s largest and newest enterprise attack surface: the home office...

Deploy Layered Security with Azure GWLB & Trend Micro

Looking to deploy broad network layer protection that integrates with your Azure services? You’re in the right place. Learn more about our latest launch partnership with Azure Gateway Load Balancer...

Does Home IoT Compromise Enterprise Security?

The most recent Pwn2Own Fall 2021 Pwn2Own Austin includes more IoT entries than ever. This gives us an opportunity to probe today’s largest and newest enterprise attack surface: the home office...

Cracking the code in the boardroom

Former FBI Special Agent, Scott Augenbaum talks about how CISOs can successfully communicate with the board to implement more preventative protection...

Cracking the code in the boardroom

Former FBI Special Agent, Scott Augenbaum talks about how CISOs can successfully communicate with the board to implement more preventative protection...

Cybersecurity Trends & Predictions for CISOs

Jon Clay, VP of threat research at Trend Micro, predicts cybersecurity attacks CISOs need to prepare for...

Private 5G Security Risks in Manufacturing Part 3

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry...

Cybersecurity Trends & Predictions for CISOs

Jon Clay, VP of threat research at Trend Micro, predicts cybersecurity attacks CISOs need to prepare for...

This Week in Security News - October 29, 2021

What to Expect in a Ransomware Negotiation & Cybercriminals Claim to Have Hacked the NRA...

Ransomware Negotiation Scenarios: What to Expect

We wanted to get a better understanding of what victims go through during the aftermath and recovery process of a ransomware attack to help others in case they find themselves in a similar situation. To do this, we analyzed victim support chats for five ransomware families...

Security Risks with Private 5G Networks in Manufacturing Part. 3

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own...

Security Risks with Private 5G Networks in Manufacturing Part. 3

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own...

This Week in Security News - October 29, 2021

What to Expect in a Ransomware Negotiation & Cybercriminals Claim to Have Hacked the NRA...

Ransomware Negotiation Scenarios: What to Expect

We wanted to get a better understanding of what victims go through during the aftermath and recovery process of a ransomware attack to help others in case they find themselves in a similar situation. To do this, we analyzed victim support chats for five ransomware families...

Workshop: Visibility Into Open Source Code

Learn how to leverage Trend Micro Cloud One - Open Source Security by Snyk with your code repositories and CI/CD pipelines to scan projects. Resulting in better visibility, tracking, and early awareness into open source issues...

Workshop: Visibility Into Open Source Code

Learn how to leverage Trend Micro Cloud One - Open Source Security by Snyk with your code repositories and CI/CD pipelines to scan projects. Resulting in better visibility, tracking, and early awareness into open source issues...

Leverage Virtual Patching to Prevent Network Threats

Implementing an intrusion prevention system is only one step in your cybersecurity efforts. Learn how virtual patching helps keep your IPS up to date and protect against zero-day threats, keeping your systems safe from attack...

Leverage Virtual Patching to Prevent Network Threats

Implementing an intrusion prevention system is only one step in your cybersecurity efforts. Learn how virtual patching helps keep your IPS up to date and protect against zero-day threats, keeping your systems safe from attack...

Smart Car Makers VW & Nissan to Build Smart Factories

The car-making giants have taken big leaps to ensure they address the needs and trends brought by the rapid growth of technologies in the automotive industry...

Smart Car Makers VW & Nissan to Build Smart Factories

The car-making giants have taken big leaps to ensure they address the needs and trends brought by the rapid growth of technologies in the automotive industry...

What To Expect in a Ransomware Negotiation

We wanted to get a better understanding of what victims go through during the aftermath and recovery process of a ransomware attack to help others in case they find themselves in a similar situation. To do this, we analyzed victim support chats for five ransomware families...

What To Expect in a Ransomware Negotiation

We wanted to get a better understanding of what victims go through during the aftermath and recovery process of a ransomware attack to help others in case they find themselves in a similar situation. To do this, we analyzed victim support chats for five ransomware families...

India Releases Cybersecurity Guidelines for Power Sector

A first in the sector, the latest scheme aims to enhance cybersecurity readiness and the overall efficiency of the country’s distribution companies...

Workshop: AWS S3 Bucket for Malware Scanning

In this workshop, you will learn how to scan your objects that are being uploaded to Amazon S3 buckets for malware and integrate into your custom workflows, by automating with your current resources, directly in your AWS environment...

Workshop: AWS S3 Bucket for Malware Scanning

In this workshop, you will learn how to scan your objects that are being uploaded to Amazon S3 buckets for malware and integrate into your custom workflows, by automating with your current resources, directly in your AWS environment...

This Week in Security News – October 22, 2021

In this week in security news, learn about a new backdoor from PurpleFox that utilizes WebSockets for more secure communication the link between the Sinclair ransomware attack and the cybercrime group Evil Corp...

India Releases Cybersecurity Guidelines for Power Sector

A first in the sector, the latest scheme aims to enhance cybersecurity readiness and the overall efficiency of the country’s distribution companies...

This Week in Security News – October 22, 2021

In this week in security news, learn about a new backdoor from PurpleFox that utilizes WebSockets for more secure communication the link between the Sinclair ransomware attack and the cybercrime group Evil Corp...

Forced Entry: A Security Test for Automatic Garage Doors

In this blog entry we revisit threats to automatic garage doors by using SDR to test two attack scenarios. We demonstrate a rolling code attack and one that involves a hidden remote feature...

This Week in Security News – October 21, 2021

In this week in security news, learn about a new backdoor from PurpleFox that utilizes WebSockets for more secure communication the link between the Sinclair ransomware attack and the cybercrime group Evil Corp...

Forced Entry: A Security Test for Automatic Garage Doors

In this blog entry we revisit threats to automatic garage doors by using SDR to test two attack scenarios. We demonstrate a rolling code attack and one that involves a hidden remote feature...

CISA Releases Automotive Cybersecurity Guide

The guide helps Transportation System Sector partners understand the cyber-physical risks related to AVs and discusses mitigation strategies they can implement...

CISA Releases Automotive Cybersecurity Guide

The guide helps Transportation System Sector partners understand the cyber-physical risks related to AVs and discusses mitigation strategies they can implement...

PurpleFox Adds New Backdoor That Uses WebSockets

In September 2021, the Trend Micro Managed XDR MDR team looked into suspicious activity related to a PurpleFox operator. Our findings led us to investigate an updated PurpleFox arsenal, which included an added vulnerability CVE-2021-1732 and optimized rootkit capabilities leveraged in their attac...

Secure Public Web Apps Running on Azure

Discover how to meet your end of the shared responsibility model with simplified security integrations for Azure...

PurpleFox Adds New Backdoor That Uses WebSockets

In September 2021, the Trend Micro Managed XDR MDR team looked into suspicious activity related to a PurpleFox operator. Our findings led us to investigate an updated PurpleFox arsenal, which included an added vulnerability CVE-2021-1732 and optimized rootkit capabilities leveraged in their attac...

Secure Public Web Apps Running on Azure

Discover how to meet your end of the shared responsibility model with simplified security integrations for Azure...