Credit to Author: Sunil Bharti| Date: Tue, 03 Dec 2024 00:00:00 +0000
Our researchers identified threat actors exploiting misconfigured Docker servers to spread the Gafgyt malware. This threat traditionally targets IoT devices; this new tactic signals a change in its behavior.
Read moreCredit to Author: AI Team| Date: Sun, 01 Dec 2024 00:00:00 +0000
The perils of AI get a lot of airtime, but what are the upsides? This issue of AI Pulse looks at some of the good AI can bring, from strengthening cybersecurity to driving health breakthroughs—and how the coming wave of agentic AI is going to take those possibilities to a whole new level.
Read moreCredit to Author: Hara Hiroaki| Date: Tue, 26 Nov 2024 00:00:00 +0000
Trend Micro has identified a spear-phishing campaign active in Japan since June 2024. Evidence about the malware used by this campaign suggests this was part of a new operation by Earth Kasha.
Read moreCredit to Author: Leon M Chang| Date: Mon, 25 Nov 2024 00:00:00 +0000
Since 2023, APT group Earth Estries has aggressively targeted key industries globally with sophisticated techniques and new backdoors, like GHOSTSPIDER and MASOL RAT, for prolonged espionage operations.
Read moreCredit to Author: Hara Hiroaki| Date: Tue, 19 Nov 2024 00:00:00 +0000
LODEINFO is a malware used in attacks targeting mainly Japan since 2019. Trend Micro has been tracking the group as Earth Kasha. We have identified a new campaign connected to this group with significant updates to their strategy, tactics, and arsenals.
Read moreCredit to Author: Feike Hacquebord| Date: Mon, 18 Nov 2024 00:00:00 +0000
In this blog entry, we discuss Water Barghest’s exploitation of IoT devices, transforming them into profitable assets through advanced automation and monetization techniques.
Read moreCredit to Author: Makoto Shimamura| Date: Mon, 11 Nov 2024 00:00:00 +0000
Trend Micro researchers, in collaboration with Japanese authorities, analyzed links between SEO malware families used in SEO poisoning attacks that lead users to fake shopping sites.
Read moreCredit to Author: Ted Lee| Date: Fri, 08 Nov 2024 00:00:00 +0000
Discover how Earth Estries employs a diverse set of tactics, techniques, and tools, including malware such as Zingdoor and Snappybee, for its campaigns.
Read moreCredit to Author: Jaromir Horejsi| Date: Wed, 16 Oct 2024 00:00:00 +0000
This article uncovers a Golang ransomware abusing Amazon S3 for data theft, and masking as LockBit to further pressure victims. The discovery of hard-coded AWS credentials in these samples led to AWS account suspensions.
Read moreCredit to Author: AI Team| Date: Thu, 31 Oct 2024 00:00:00 +0000
In the final weeks before November’s U.S. election, cybersecurity experts were calling October 2024 the “month of mischief”—a magnet for bad actors looking to disrupt the democratic process through AI-generated misinformation. This issue of AI Pulse looks at what can be done about deepfakes and other AI scams, and why defense-in-depth is the only way to go.
Read more