TrendMicro – Page 58 – PossibleThreat Articles

Thwarting Loaders: From SocGholish to BLISTER’s LockBit Payload

Credit to Author: Earle Maui Earnshaw| Date: Tue, 05 Apr 2022 00:00:00 +0000

Both BLISTER and SocGholish are loaders known for their evasion tactics. Our report details what these loaders are capable of and our investigation into a campaign that uses both to deliver the LockBit ransomware.

Security TrendMicro

MacOS SUHelper Root Privilege Escalation Vulnerability: A Deep Dive Into CVE-2022-22639

April 4, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Mickey Jin| Date: Mon, 04 Apr 2022 00:00:00 +0000

We discovered a now-patched vulnerability in macOS SUHelper, designated as CVE-2022-22639. If exploited, the vulnerability could allow malicious actors to gain root privilege escalation.

Security TrendMicro

An In-Depth Look at ICS Vulnerabilities Part 2

April 4, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : ics ot, trend micro research : ransomware, trend micro research : research

In part two of our three-part series, we continue to analyze vulnerabilities using MITRE ATT&CK. We also look into the sectors affected and their risk levels.

Security TrendMicro

This Week in Security News – April 1, 2022

April 1, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : expert perspective, trend micro research : network

Credit to Author: Jon Clay| Date: Fri, 01 Apr 2022 00:00:00 +0000

Probing the activities of cloud-based cryptocurrency-mining groups, and Lapsus$ ‘back from vacation’

Security TrendMicro

An In-Depth Look at ICS Vulnerabilities Part 1

March 29, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : ics ot, trend micro research : malware, trend micro research : research

In this blog series our team examined various ICS vulnerabilities using the MITRE Adversarial Tactics, Techniques, and Common Knowledge (ATT&CK) for ICS.

Security TrendMicro

How CISOs can Mitigate Cryptomining Malware

March 29, 2022 0 Comments trend micro ciso : article, trend micro ciso : cloud, trend micro ciso : expert perspective, trend micro ciso : risk management

Credit to Author: Jon Clay| Date: Tue, 29 Mar 2022 00:00:00 +0000

Learn more about cloud-based cryptomining, its repercussions, and how CISOs can create an effective risk mitigation strategy for this threat.

Security TrendMicro

Why Organizations Should Take Cloud-Based Cryptocurrency-Mining Attacks Seriously

March 29, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : research

Credit to Author: Mayra Rosario Fuentes| Date: Tue, 29 Mar 2022 00:00:00 +0000

One of the recent trends we’ve observed is the rise of cloud-based cryptocurrency-mining groups that exploit cloud resources, specifically the CPU power of deployed cloud instances, to mine cryptocurrency.

Security TrendMicro

Terraform Tutorial: Drift Detection Strategies

March 28, 2022 0 Comments trend micro devops : article, trend micro devops : aws, trend micro devops : azure, trend micro devops : cloud native, trend micro devops : conformity, trend micro devops : expert perspective, trend micro devops : multi cloud

Credit to Author: Michael Langford| Date: Mon, 28 Mar 2022 00:00:00 +0000

A fundamental challenge of architecture built using tools like Terraform is configuration drift. Check out these actionable strategies and steps you can take to detect and mitigate Terraform drift and manage any drift issues you might face.

Security TrendMicro

Purple Fox Uses New Arrival Vector and Improves Malware Arsenal

March 25, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Sherif Magdy| Date: Fri, 25 Mar 2022 00:00:00 +0000

Purple Fox is an old threat that has been making waves since 2018. This most recent investigation covers Purple Fox’s new arrival vector and early access loaders. Users’ machines seem to be targeted with malicious payloads masquerading as legitimate application installers.

Security TrendMicro

This Week in Security News – March 25, 2022

March 24, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : expert perspective, trend micro research : network

Credit to Author: Jon Clay| Date: Fri, 25 Mar 2022 00:00:00 +0000

An investigation of cryptocurrency scams and schemes, and Lapsus$: Oxford teen accused of being multi-millionaire cyber-criminal