Hello Ransomware Uses Updated China Chopper Web Shell, SharePoint Vulnerability

We discuss the technical features of a Hello ransomware attack, including its exploitation of CVE-2019-0604 and the use of a modified version of the China Chopper web shell...

This Week in Security News - April 23, 2021

XCSSET Quickly Adapts to Macs and Babuk Ransomware Gang Claims Decryptor Repaired...

Trend Micro Encourages Patching Of Old Vulnerability

Trend Micro released several patches last year to address known vulnerabilities. Since that time, an attempt was observed to leverage one of these vulnerabilities in a single unpatched customer system...

How to protect serverless and container applications with RASP

With increased demand for container and serverless technology, the need for enhanced security is inevitable. Learn how to secure serverless and container applications using runtime application self-protection RASP...

Tor-Based Botnet Malware Targets Linux Systems, Abuses Cloud Management Tools

We found a botnet malware campaign targeting Linux systems, abusing the Tor network for proxies, and exploiting cloud infrastructure management tools for intrusion...

The Storybook Approach to MITRE ATT&CK

Read this year’s MITRE Engenuity ATT Evaluations story, which simulates techniques associated with notorious threat groups Carbanak and FIN7 to test solutions' ability to detect and stop APT & Targeted Attacks...

Carbanak and FIN7 Attack Techniques

What happens in Carbanak and FIN7 attacks? Here are some techniques used by these financially motivated threat groups that target banks, retail stores, and other establishments...

How to scan and encrypt objects in S3 buckets

This article explains how to scan objects in S3 buckets against malware and keep your objects encrypted with SSE-KMS...

Could the Microsoft Exchange breach be stopped?

A look at the latest Microsoft zero-day exploits and how Trend Micro could help protect you...

XCSSET Quickly Adapts to macOS 11 and M1-based Macs

This latest update details our new research on XCSSET, including the ways in which it has adapted itself to work on both ARM64 and x86x64 Macs...

This Week in Security News - April 16, 2021

April Patch Tuesday Sets Record High for 2021 and Fed Warns Cyber Threats Pose Danger to U.S Economy...

Cyber-insurers Endorse Cloud Security Platform

With so many vendors in the market, the Marsh initiative has created the Cyber Catalyst to help IT buyers find the right option for them...

Could the Microsoft Exchange breach be stopped?

A look at the latest Microsoft zero-day exploits and how Trend Micro could help protect you...

Celebrating 3 years of the Cybersecurity Tech Accord

Cybersecurity Tech Accords has grown significantly in the past 3 years, today having 150 signatories across 5 continents, united in the fight against cybercrime...

5 #TrendTips to Implement Application Security

We’ve compiled 5 TrendTips to help you get started with bolstering your application security posture...

HTTPS over HTTP: A Supply Chain Attack on Azure DevOps Server 2020

We provide the technical details of a supply chain attack on an improperly configured Azure DevOps Server 2020, specifically in the continuous integration and continuous delivery CI/CD Pipeline Agent communicating without TLS...

April Patch Tuesday Sets Record High for 2021

April’s Patch Tuesday fixes 114 vulnerabilities in various Microsoft products, a slight increase from March’s 89. This is the most vulnerabilities fixed in a month for 2021 to date, as well as a slight increase from the same month last year...

A Spike in BazarCall and IcedID Activity Detected in March

We discuss the cases of BazarCall and IcedID we observed in March. Both are known for the use of spam to deliver their payloads...

Iron Tiger APT Updates Toolkit With Evolved SysUpdate Malware

This blog details how Iron Tiger threat actors have updated their toolkit with an updated SysUpdate malware variant that now uses five files in its infection routine instead of the usual three...

This Week in Security News - April 9, 2021

Microsoft Teams and Zoom Hacked In $1 Million Competition and Preventing Ransomware While Working from Home...

4 Steps to Container Lifecycle Security

Containers and Kubernetes have revolutionized developing, deploying, and scaling applications and infrastructure. Learn best practices for security across the container lifecycle, so you can guard your containers against attack...

DevOps Teams Can Prove ISO Compliance with Automation

Learn the ISO standards for security and cloud compliance as well as the automated mechanisms to ensure those standards...

This Week in Security News - April 2, 2021

Alleged Members of Egregor Ransomware Cartel Arrested and Cybercriminals Home in on Manufacturers...

Injecting Deception Mid-Pandemic: Covid-19 Vaccine Related Threats

We share some of our findings on malware, spam, phishing schemes, malicious websites, and illicit markets that use Covid-19 vaccines as a lure...

Going Beyond Built-in Security: Email Threats in 2020

Explore the need for going beyond built-in Microsoft 365 and Google Workspace security based on email threats detected in 2020...

What’s new on AWS Lambda in 2021

This article explores new updates and documentation for AWS Lambda in 2021. Lambda launched several new updates including run container images, cost saving initiatives, and expanded compute capacity...

Protecting LoRaWAN Hardware from Attacks in the Wild

In the last article of our LoRaWAN series, we present dangerous hardware attacks that could affect organizations using this technology. These attacks are particularly worrying because many LoRaWAN devices are deployed in unsecured locations...

Alleged Members of Egregor Ransomware Cartel Arrested

Trend Micro served as one of the cybersecurity partners of law enforcement authorities involved in the investigation...

This Week in Security News - March 26, 2021

Tracking Conti Ransomware and Swiss Firm Accessed SolarWinds Hacker’s Servers...

Cloud Misconfigurations : Avoid Breaches

Check out this infographic on cloud misconfigurations to gain insight on the major causes of misconfigurations, the impacts of those misconfigurations, and tips on how to avoid them so you can continue to build confidently in the cloud...

Websites Hosting Cracks Spread Malware, Adware

We investigated pay-per-install PPI websites spreading multiple malware and adware, including CopperStealer and LNKR...

Maintain File Security during Compliance Scanning

Learn how to integrate security into the build process to protect downstream workflows from risk...

This Week in Security News - March 19, 2021

Joker’s Latest Ploy and NFT Digital Art Is Already Attracting Hackers...

Trend Micro Vision One: Tracking Conti Ransomware

We show how the Trend Micro Vision One platform can be used to track Conti ransomware...

Trend Micro 2020 Annual Cybersecurity Report

Reviewing the most important cybersecurity stories, issues, and trends that occurred over 2020, this annual report aims to equip security leaders with valuable insight and tools so they can focus on both protecting and enabling the organization...

XDR: Up-Leveling Security Integration

A single source of attack telemetry just won’t cut it anymore. See why IDC analyst Michael Suby believes that an XDR platform is a must-have for securing your enterprise...

How CISOs can stay ahead of ransomware attacks

With ransomware threats evolving in 2020, take a look at how you can stay ahead of the curve...

How XDR can enable your enterprise

Extended detection and response XDR provides enhanced visibility, detection, and response across your entire IT infrastructure—enabling you to be more resilient in the face of ever-changing attacks...

How to Protect Your Downstream Workflows

Learn how to protect your downstream workflows without interruption...

Trend Micro + ROS-I: Building a more secure future

Trend Micro joins ROS-I Consortium to help accelerate the secure development of robotic Industry 4.0 applications...

Guardrails to Avoid Cloud Misconfigurations

The stakes and opportunities are higher than ever to ensure that strong operational excellence strategies are implemented. Explore how to help ensure you are holding up your end of the bargain as part of your CSP’s Shared Responsibility Model...

Amazon ECS Exec Now Works with Containers in AWS Fargate

Building in containers offers amazing benefits for development teams – speed, agility, flexibility, scalability, etc...

AWS File Storage Security & Scanning Basics

Keep up with how each new AWS service affects the security posture of your applications and development processes...

Infrastructure as Code Explained

Explore one of the major trends in cloud computer, infrastructure as code. Learn how leveraging infrastructure as code improves efficiency, consistency, and can lower cost...

How to Configure and Secure Amazon S3

In this article, we’ll dive into some of the workarounds and considerations you may encounter with Amazon S3, since it’s the most used—and misused—cloud storage option on AWS...

Mistakes were Made, Lessons were Learned

Mark Nunnikhoven, AWS Community Hero and Trend Micro Vice President of Cloud Research, explores how to leverage the AWS Well Architected Framework, and six core design principles to build in the AWS cloud with confidence...

Cloud Storage Security: Keeping Malicious Files Out

Discover how to maintain compliance and keep your business safe from malicious files when using Amazon Web Services® AWS instances...

12 Azure & AWS IAM Security Best Practices

Learn the 12 Azure & AWS identity and access management IAM security best practices, and how to optimize your company’s cloud platform protection...

How to Secure AWS Cloud Storage

Discover how to quickly install and integrate Trend Micro Cloud One with Amazon Web Services AWS...

How to use Rancher in Kubernetes

Author Chuck Losh sets up a test deployment of Rancher to "reign in" his local test Docker-Desktop Kubernetes cluster, then sets up a private helm catalog to deploy Trend Micro Cloud One Container Security components...