news

Attack on Security Titans: Earth Longzhi Returns With New Tricks

Posted on by Admin
Attack on Security Titans: Earth Longzhi Returns With New Tricks

Attack on Security Titans: Earth Longzhi Returns With New Tricks After months of dormancy, Earth Longzhi, a subgroup of advanced persistent threat (APT) group APT41, has reemerged using new techniques in its infection routine. This blog entry forewarns readers of Earth Longzhi’s resilience as a noteworthy threat. By: Ted Lee, Hara Hiroaki May 02, 2023 Read time:  ( words) We discovered a new campaign by Earth Longzhi (a subgroup of APT41) that targets organizations based…

Read More

Rapture, a Ransomware Family With Similarities to Paradise

Posted on by Admin
Rapture, a Ransomware Family With Similarities to Paradise

Rapture, a Ransomware Family With Similarities to Paradise Ransomware In March and April 2023, we observed a type of ransomware targeting its victims via a minimalistic approach with tools that leave only a minimal footprint behind. Our findings revealed many of the preparations made by the perpetrators and how quickly they managed to carry out the ransomware attack. By: Don Ovid Ladores, Ian Kenefick, Earle Maui Earnshaw April 28, 2023 Read time:  ( words) In…

Read More

Update Now PaperCut Vulnerability CVE-2023-27350 Under Active Exploitation

Posted on by Admin
Update Now PaperCut Vulnerability CVE-2023-27350 Under Active Exploitation

Update Now PaperCut Vulnerability CVE-2023-27350 Under Active Exploitation Exploits & Vulnerabilities Two vulnerabilities in PaperCut have been found, and one of them is being actively exploited in the wild. This blog entry provides a summary of the vulnerabilities, and includes security guidance for IT and SOC professionals. By: Trend Micro April 26, 2023 Read time:  ( words) Updated on April 26, 2023, 4:12 a.m. EDT where we added details on an observed instance through Trend…

Read More

Attackers Use Containers for Profit via TrafficStealer

Posted on by Admin
Attackers Use Containers for Profit via TrafficStealer

Attackers Use Containers for Profit via TrafficStealer Cloud We found TrafficStealer abusing open container APIs in order to redirect traffic to specific websites and manipulate engagement with ads. By: Alfredo Oliveira April 26, 2023 Read time:  ( words) Our team deploys containers and containerized honeypots to monitor any unwanted activities, as well as to reinforce cloud security solutions and recommendations. While these honeypots frequently capture cryptocurrency miners trying to exploit computational resources, we recently discovered…

Read More

ViperSoftX Updates Encryption, Steals Data

Posted on by Admin
ViperSoftX Updates Encryption, Steals Data

Figure 11. Top 10 countries affected by ViperSoftX malware in the enterprise (top) and consumer (bottom) sectorsSource: Trend Micro Smart Protection Network (SPN) Conclusion and insights While other cybercriminals use sideloading to load another non-binary component (usually the encrypted payload, which comes together as a package with the normal executable and the sideloaded DLL), the chosen techniques of the actors behind ViperSoftX (which involve using WMI Query Language (WQL), DLL sideloading/DLL load order hijacking, PowerShell…

Read More

Trend Achieves AWS Level 1 MSSP Competency Status

Posted on by Admin
Trend Achieves AWS Level 1 MSSP Competency Status

Are your security teams overwhelmed with notifications and ever-expanding queues of suspicious activities that require investigation? You are not alone. According to Trend Micro™ Research, 51% of organizations are drowning in alerts. As the attack surface continues to evolve, your organization’s ability to discover, assess, and mitigate risk effectively and efficiently will determine your capacity to stop adversaries. So, what would it mean to your organization if you could become more resilient to the onslaught…

Read More

An Analysis of the BabLock Ransomware

Posted on by Admin
An Analysis of the BabLock Ransomware

An Analysis of the BabLock Ransomware Ransomware This blog post analyzes a stealthy and expeditious ransomware called BabLock (aka Rorschach), which shares many characteristics with LockBit. By: Don Ovid Ladores April 18, 2023 Read time:  ( words) A ransomware called BabLock (aka Rorschach) has recently been making waves due to its sophisticated and fast-moving attack chain that uses subtle yet effective techniques. Although primarily based on LockBit, the ransomware is a hodgepodge of other different…

Read More

Unpacking the Structure of Modern Cybercrime Organizations

Posted on by Admin
Unpacking the Structure of Modern Cybercrime Organizations

The last 20 years have seen the cyberthreat landscape transform markedly: From an era of cyberattacks with damaging payloads, the cybercrime space has evolved to one where malicious actors have organized themselves into groups, mainly driven by financial gain. Consequently, organizations now contend with a new breed of cybercriminals fiercely competing among themselves to claim a bigger stake in a highly lucrative market. Given present circumstances, malicious actors have organized themselves in ways that show…

Read More

Stay Ahead of Cyber Threats

Posted on by Admin
Stay Ahead of Cyber Threats

Trend Micro serves over half a million corporate customers across the globe, including eight of the top 10 telecom firms. Many of these customers are among the world’s largest organizations – running some of the most demanding IT environments on the planet. They need industry-leading threat protection, detection, and response capabilities to work at high speed and scale. That’s why we recently enhanced our TX product line of high-performance appliances with the 9200TXE. As attack…

Read More

S4x23 Review Part 4: Cybersecurity for Industrial IoT

Posted on by Admin
S4x23 Review Part 4: Cybersecurity for Industrial IoT

Bellotti said first that we should start with the realization that legacy technologies are successful technologies. Legacy technologies remain because they are usable and important. They are the foundation for other systems therefore it has a significant impact when they are changed. But people believe in some myths of modernization. First, the technology is regarded as old. It doesn’t matter if the technology is new or old. For example, Python is older than Java, and…

Read More
1 2 3 27