trend micro research : research – Page 17

CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS

November 10, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Mickey Jin| Date: Fri, 11 Nov 2022 00:00:00 +0000

This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used to install software installer packages (PKG files).

Security TrendMicro

DeimosC2: What SOC Analysts and Incident Responders Need to Know About This C&C Framework

November 8, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : network, trend micro research : research

Credit to Author: Feike Hacquebord| Date: Tue, 08 Nov 2022 00:00:00 +0000

This report provides defenders and security operations center teams with the technical details they need to know should they encounter the DeimosC2 C&C framework.

Security TrendMicro

Manufacturing Cybersecurity: Trends & Survey Response

October 27, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : ics ot, trend micro research : iot, trend micro research : malware, trend micro research : phishing, trend micro research : ransomware, trend micro research : research

Credit to Author: Mayumi Nishimura| Date: Fri, 28 Oct 2022 00:00:00 +0000

Based on our survey of over 900 ICS security leaders in the United States, Germany, and Japan, we dig deeper into each industry’s challenges and present Trend Micro’s recommendations.

Security TrendMicro

Where is the Origin?: QAKBOT Uses Valid Code Signing

October 27, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Hitomi Kimura| Date: Thu, 27 Oct 2022 00:00:00 +0000

Code signing certificates help us assure the file’s validity and legitimacy. However, threat actors can use that against us. In this blog, discover how QAKBOT use such tactic and learn ways how to prevent it.

Security TrendMicro

From Bounty to Exploit: Observations About Cybercriminal Contests

October 27, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : research

Credit to Author: David Sancho| Date: Thu, 27 Oct 2022 00:00:00 +0000

From articles to hackathons, cybercriminals are resorting to crowdsourcing to find more ways to exploit systems. In this blog, we discuss our takeaways and summarize the results of these contests.

Security TrendMicro

LV Ransomware Exploits ProxyShell in Attack on a Jordan-based Company

October 25, 2022 0 Comments trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : ransomware, trend micro research : research

Credit to Author: Mohamed Fahmy| Date: Tue, 25 Oct 2022 00:00:00 +0000

Our blog entry provides a look at an attack involving the LV ransomware on a Jordan-based company from an intrusion analysis standpoint

Security TrendMicro

Uncovering Security Blind Spots in CNC Machines

October 24, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : iot, trend micro research : research

Credit to Author: Marco Balduzzi| Date: Mon, 24 Oct 2022 00:00:00 +0000

Industry 4.0 has given rise to smart factories that have markedly improved machining processes, but it has also opened the doors for cybercriminals looking to abuse networked industrial equipment such as CNC machines. Our research investigates potential cyberthreats to CNC machines and how manufacturers can mitigate the associated risks.

Security TrendMicro

Oil and Gas Cybersecurity: Trends & Response to Survey

October 13, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : ics ot, trend micro research : iot, trend micro research : malware, trend micro research : phishing, trend micro research : ransomware, trend micro research : research

Credit to Author: Mayumi Nishimura| Date: Thu, 13 Oct 2022 00:00:00 +0000

Based on our survey of over 900 ICS security leaders in the United States, Germany, and Japan, we dig deeper into each industry’s challenges and present Trend Micro’s recommendations.

Security TrendMicro

Black Basta Ransomware Gang Infiltrates networks via QAKBOT, Brute Ratel, and Cobalt Strike

October 12, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : malware, trend micro research : network, trend micro research : research

Credit to Author: Ian Kenefick| Date: Wed, 12 Oct 2022 00:00:00 +0000

We analyzed a QAKBOT-related case leading to a Brute Ratel C4 and Cobalt Strike payload that can be attributed to the threat actors behind the Black Basta ransomware.

Security TrendMicro

How Water Labbu Exploits Electron-Based Applications

October 5, 2022 0 Comments trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : research, trend micro research : web

Credit to Author: Joseph C Chen| Date: Wed, 05 Oct 2022 00:00:00 +0000

In the second part of our Water Labbu blog series, we explore how the threat actor exploits Electron-based applications using Cobalt Strike to deploy backdoors.