TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 30, 2018

When I was little, I discovered the joy of jumping on the bed. While it was fun to jump on the bed, I wanted to make it more challenging so I started to imitate the ski jumpers I had seen during the 1976 Winter Olympics and jump from my parents’ dresser to the bed. I quickly found out there’s a...

Securing the Connected Industrial World with Trend Micro

At Trend Micro we’ve made it our business over the past 30 years to anticipate where technology is taking the world. That’s why our message has evolved over that time from Peace of Mind Computing to Your Internet Firewall and most recently Securing Your Journey to the Cloud. Well, we know that...

What HIPAA and Other Compliance Teaches Us About the Reality of GDPR

with contributing author, William J. Malik, CISA | VP, Infrastructure Strategies The date for General Data Protection Regulation GDPR compliance is just weeks away, yet many organizations, especially those outside Europe, remain unprepared. It turns out that the experiences from other privacy...

PROTECTING YOUR PRIVACY – Part 2: How to Maximize Your Privacy on Social Media and in Your Browser

In the last post we highlighted the privacy risks associated with using popular social networking sites and browsers. You might not appreciate just how much of your personal data is being accessed by advertisers and other third parties via your social media accounts and internet browsing...

State-of-the-art Security: The role of technology in the journey to GDPR compliance

As we’ve discussed over the last 7 weeks in our video case study series, the General Data Protection Regulation GDPR impacts many different areas of our company, including our employees, customers, and partners. The GDPR also mandates the use of state-of-the-art security, which, as a leader in...

How cryptocurrency is shaping today’s threat environment

Cryptocurrency has exploded as a popular way to support digital transactions. Since its creation, users have discovered an array of different ways to leverage cryptocurrency, including within mining strategies and digital wallets. Expanded use cases and interest helped propel the value of digital...

PROTECTING YOUR PRIVACY – Part 1: The Privacy Risks of Social Networks and Online Browsing

Most Americans today spend many of their waking hours online. In fact, we’re up to spending an average of five hours per day just on our mobiles. Much of this time is spent browsing the web or checking in, updating and sharing via our favorite social networks. There’s just one problem: unless you...

Don’t just add the Security “S” to your Managed Services

Expanding and putting more focus on your current security offerings is a great way to find new business opportunities. Adding the “S” is the easy part; just ask any managed service provider that views security as just a “checkbox” and offers one of the cheaper or RMM-integrated security offerings...

This Week in Security News: Fines and Funding

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, the SEC paid $35 million in fines following the 2014 breach, in which Russian hackers obtained the information of 500 million users. In...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 23, 2018

I was having dinner with friends recently and one of the newer members of the group asked me what I did for a living. I told him that I worked for a cybersecurity company and his reply was, “I don’t need to worry about security – I have a MacBook.” I thought that at any second, Rod Serling was...

The New Mobile Threat Landscape, circa 2017 to 2018

Submitted by Ian Grutze If mobile threats diversified and expanded in 2016, they matured in 2017. Mobile ransomware continued to rear its head, burgeoning into the platform’s most prevalent threat. Simple screen lockers, for instance, evolved into file-encrypting malware, some of which even seeme...

Graffiti in the digital world: How hacktivists use defacement

Activists have been featured more frequently in the news lately, with marches shining the spotlight on women's rights and bringing about an end to gun violence, to name a few. However, the real world isn't the only place where activism happens. The digital realm has become a critical space for...

Customer data & marketing operations: Keeping your data safe on the journey to GDPR compliance

Emails. Web forms. Events. Oh my! These marketing tactics are all designed to gather, store, and evolve relationships with your prospects, customers, and partners. Often times, they are the first point of contact for your organization from the outside world—and they all feed into your marketing...

The Risks of Bio-IoT

Bio-IoT: Internet of Things applied to biological systems, such as pharmaceutical delivery systems, implanted medical devices, intelligent prosthetics, surgical assistants, and remote patient monitoring. IoT 2.0, with ample processing resources and OSI-conformant networking, promises vast...

How to Upgrade Mac to macOS High Sierra

The latest version of the macOS operating system, macOS High Sierra, was released on Monday, September 25, 2017. In this article, we will explain how to upgrade mac to macOS High Sierra. Why Should We Upgrade to macOS High Sierra? Apple released the latest macOS, High Sierra, and added some new...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 16, 2018

It was a crazy week at this year’s RSA Conference in San Francisco. I always try to get a quick view of the floor to see companies old and new exhibit their wares. Unfortunately, work never sleeps when you attend a conference, and the shortage of seating at this year’s event left many, including...

This Week in Security News: Warnings and WannaCry

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, we're following Ikea's job marketplace, TaskRabbit, which may have suffered a data breach. Also, the U.S and U.K warn against Russian cyber...

Endpoint Security Testing Matters: New NSS AEP Test Results

NSS Labs, Inc. has just released the 2018 edition of their Advanced Endpoint Protection testing, and Trend Micro’s endpoint solutions have performed very well, resulting in a “recommended” rating. We had strong performance on “security effectiveness,” meaning that we detected and blocked threats...

The Human (Resource) Role in the Journey to GDPR Compliance

Employees are at the center of dealing with the General Data Protection Regulation GDPR, which is the new European regulation that aims to strengthen and standardize the data pricy rights of European citizens. As we’ve discussed throughout this blog series, the GDPR impacts many organizations...

The connected workforce: The importance of protecting home and corporate networks

In the current corporate and employee landscape, workers are leveraging a variety of endpoints from a range of different locations to access enterprise systems and assets. Staff members are no longer chained to their desks, and many employers and workers alike have begun taking advantage of...

The Cybersecurity Tech Accord: Time to Come Together to Combat Digital Threats

At Trend Micro we’re committed to making the world a safer place in which to exchange digital information. In fact, we’ve been protecting our customers from the ever-evolving threat landscape for nearly 30 years. But we know we can and must do more as an industry to combat the challenges we face...

Arm your users with knowledge to spot phishing attacks – for free!

Attendees to the Black Hat 2017 security conference said their No. 1 security concern and most time-consuming activity was phishing and social engineering attacks. That’s no surprise with the increase in Business Email Compromise BEC attacks and with most ransomware being delivered by email. But...

Leveraging the Power of AI to Stop Email Scammers

Staff members are on the frontline when it comes to cyberattacks against their employers. They’re increasingly seen by hackers as a weak link in the cybersecurity chain. That’s why most threats today come via email, aimed squarely at tricking the recipient into downloading malware, divulging...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 9, 2018

The interviewing process can be mentally draining. You have to look your best, say the right things, and prove that you’re the best person for the job. When I interview candidates, I love to come up with the one crazy question that isn’t on the usual list of questions that might be asked. I...

This Week in Security News: Corporate Vulnerability and Cyber Threats

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, a new cyber threat report reveals the vulnerability of small businesses and a new ransomware could infect your software to steal your...

NIST Cybersecurity Framework Series Part 5: Recover

The best way to stop a cyber attack is to prevent it from taking place in the first place. While this is certainly true, the level of sophistication and persistence seen among today's hackers can often negate this strategy. A proactive approach to data security is an absolute must, but chief...

Sharing the Journey to GDPR Compliance

Customer data is everything at Trend Micro. As a global cybersecurity leader, protecting customer data is what we do for a living, which is why it’s important for us to put into practice what we talk to our customers about. As a demonstration of our commitment to protecting our millions of...

Independent lab tests again prove the excellence of Trend Micro Mobile Security for Android

Submitted by Ian Grutze For the fourth year in a row, as shown in AV Comparatives’ Anti-Virus Comparative Android Test 2018 - January 2018, Trend Micro Mobile Security for Android shows it provides 100% protection against malware. In this independent lab test, more than 200 mobile security produc...

The Role That IT Security Teams Need to Play in Connected Hospitals

The WannaCry outbreak that reportedly raked in US$1B in damage costs also forced doctors to cancel scheduled appointments, among other things, brought on warranted concern over pervasive ransomware attacks that could stem from oft-overlooked components of healthcare networks—exposed medical cyber...

Advancing threat protection through industry-leading research

At Trend Micro we’ve been protecting our customers around the world for 30 years. So what’s the secret to staying at the cutting edge of the industry for all this time? By investing significant resources into forward-looking threat research, we’ve been able to anticipate where the black hats are...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 19, 2018

Back in 2005, there were a number of us in a conference room in Austin, Texas working to determine how we would structure it, what we would name it, and how to deal with the potential backlash that would come after we announced it. What is it? I’m referring to our Zero Day Initiative. It’s been a...

This Week in Security News: IT Pros and Cyberthreats

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, 62 percent of IT decision makers report that on-premises security is safer than the cloud, and a new report says 68 percent of businesses ar...

GDPR vs Blockchain: Technology vs the Law

One of the biggest impacts that GDPR will have for consumers citizens of countries that comply with GDPR, at least is the right to be forgotten. A person can request that they be removed from a record. What if the record is part of a blockchain? This poses a challenge for blockchain...

The GDPR is Coming: We Shed Light on What’s Still Not Working

On May 25, the biggest shake-up to Europe’s data protection laws in almost a generation will finally take effect, after years of planning. For any US organization handling data on EU citizens, including service providers, it means you could face hefty fines of up to €20m $24.7m or 4% of global...

Mapping the Journey to GDPR Compliance: Who’s got the wheel?

With so many different areas of the company involved in our journey to becoming compliant with the General Data Protection Regulation GDPR by May 25th, it was essential for us to have a strong program manager mapping our route. The GDPR enforces the idea that every company should to be aware of...

Vulnerabilities are a Cybercriminal’s Best Friend

When discussions around the ways cybercriminals and hackers are able to compromise and penetrate an organization, it regularly leads to the use of exploits and exploit kits. Because all software can contain flaws and bugs, a threat actor only has to either find a new, undisclosed vulnerability...

NIST Cybersecurity Framework Series Part 2: Protect

A key goal of many chief information security officers is to bolster the protections the company uses to safeguard its most critical assets. This type of priority isn't difficult to understand in the current cybersecurity landscape - 360,000 new malicious files were discovered every day in 2017,...

Research to Power Your Cybersecurity Strategy

Tap into the leading cyber threat research team that enabled the prevention of 48 billion exploits in 2018 alone...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 12, 2018

This week marked the 11th annual Pwn2Own contest held during the CanSecWest conference in Vancouver and while the contest had fewer entries compared to previous years, it was still an exciting event filled with a little drama. Over the course of two days, the Zero Day Initiative awarded $267,000...

This Week in Security News: The Cost of Being Unprepared

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, a Georgia bill has the potential to threaten security researchers, and a new report says 77 percent of businesses lack a cybersecurity...

Our Journey to GDPR Compliance: Lessons learned on our way to May 25th

With the European Union’s EU General Data Protection Regulation GDPR date fast approaching, we have been working hard to make sure our already strong security culture and policies will align with the new regulation. As GDPR is a very broad law that includes people, process, and technology, workin...

A View of Upcoming Threat Coverage from Pwn2Own 2018

This blog will be updated throughout the competition so keep tracking for the latest updates on upcoming threat coverage! St. Patrick’s Day is coming up later this week, but the contestants at Pwn2Own 2018 will need more than luck on their side. They will need to dive into their expert hacking...

NIST Cybersecurity Framework Series Part 1: Identify

The National Institute of Standards and Technology created the Cybersecurity Framework NIST CSF four years ago under the Obama administration. Recently, the framework received added attention when President Donald Trump signed a cybersecurity executive order in May 2017, mandating that government...

Two-Factor Authentication: What is it and why do I need it to stay safe online?

Today, Americans are living more and more of their lives on the internet. We shop, bank, socialize, work and play online. But as our digital lives become increasingly important, they are also exposed to greater risks. Hackers are lurking around every corner ready to steal our identities, drain ou...

TippingPoint Threat Intelligence and Zero-Day Coverage – Week of March 5, 2018

Today marks the first day of South by Southwest SXSW here in Austin and if you happen to be in town for the event, Trend Micro will be there! Starting tomorrow, Trend Micro will be exhibiting at the SXSW Job Market in booth 523. The SXSW Job Market is being held on March 10-11, 2018 at the Palmer...

This Week in Security News: Rules and Roles

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, The New York Times critiqued the S.E.C.’s new cybersecurity guidance, Github suffered a record-breaking DDoS attack, and Forbes outlined the...

2017’s Biggest Threats and What CISOs Can do to Mitigate Risks in 2018

Enterprise Risk Management ERM is getting harder every day. According to the World Economic Forum‘s 2018 Global Risks Perception Survey, cyber attacks and data theft are 3 and 4 respectively of the top 5 likely risks organizations will face this year. This is not surprising, in 2017 CISOs the wor...

Trend Micro at HiMSS: Protecting Healthcare Organizations with Optimized, Connected Security

Submitted by Elie Nasrallah , Director – Cyber Security Strategy The healthcare industry remains one of the most frequently targeted sectors in the United States. It accounted for nearly a quarter 23% of all breaches reported in 2017, second only to the business category, in another record year f...

How to Clean Install macOS High Sierra – Includes installing macOS from a USB device

Along with the upgrade of Mac OS X, its name has also changed to High Sierra. Due to Apple’s restrictions, some older Macs cannot be upgraded to the latest macOS High Sierra. You may want to install a completely new macOS. This article explains how to clean install the macOS High Sierra. First we...

Our Exposed World – Old exposures, new attacks

Natasha Hellberg, Senior Threat Researcher FTR With assistance from William Gamazo Sanchez, DSLabs Within the last few days a new player has been introduced into the distribute denial of service DDoS amplification attack world and with it brings the potential for much larger DDoS attacks than wha...