Aligning the c-suite with cyber risk management
As we creep toward a post-pandemic world, organizations need to plan accordingly. Explore Trend Micro’s latest cyber risk research to enable your business to maximize its growth and potential.
TrendMicro
How to better manage your digital attack surface risk
As organizations shift to the cloud in droves, their digital attack surface continues to rapidly expand. And with the number of threats rapidly increasing, security leaders need to enhance their attack surface risk management. We explore how a unified cybersecurity platform can help improve your defenses against cyber risk in comparison to point products.
Cryptomining Overview for DevOps
Credit to Author: Mayra Rosario Fuentes| Date: Thu, 21 Apr 2022 00:00:00 +0000
Learn the impacts of cryptomining attacks for DevOps as well as mitigation strategies to bolster security without impacting time to market delivery.
Read moreSecure application development cloud best practices
Credit to Author: Tabitha Doyle| Date: Wed, 20 Apr 2022 00:00:00 +0000
The need for agility can often sideline security best practices; we explore how to build with security at the forefront without compromising time to delivery.
Read moreAnalyzing Attempts to Exploit the Spring4Shell Vulnerability CVE-2022-22965 to Deploy Cryptocurrency Miners
Credit to Author: Nitesh Surana| Date: Wed, 20 Apr 2022 00:00:00 +0000
Recently, we observed attempts to exploit the Spring4Shell vulnerability — a remote code execution bug, assigned as CVE-2022-22965 — by malicious actors to deploy cryptocurrency miners.
Read moreSpring4Shell Vulnerability CVE-2022-22965 Exploited to Deploy Cryptocurrency Miners
Credit to Author: Nitesh Surana| Date: Wed, 20 Apr 2022 00:00:00 +0000
Recently, we observed the Spring4Shell vulnerability — a remote code execution bug, assigned as CVE-2022-22965 — being actively exploited by malicious actors to deploy cryptocurrency miners.
Read moreCritically Underrated: Studying the Data Distribution Service (DDS) Protocol
Researchers from Trend Micro Research, TXOne, ADLINK, Alias Robotics, and ZDI looked into the Data Distribution Service (DDS) standard and its implementations from a security angle. The full findings of this research will be presented in the S4X22 Conference in April 2022.
An Investigation of the BlackCat Ransomware via Trend Micro Vision One
Credit to Author: Lucas Silva| Date: Mon, 18 Apr 2022 00:00:00 +0000
We recently investigated a case related to the BlackCat ransomware group using the Trend Micro Vision One™ platform, which comes with extended detection and response (XDR) capabilities. BlackCat (aka AlphaVM or AlphaV) is a ransomware family created in the Rust programming language and operated under a ransomware-as-a-service (RaaS) model.
Read moreCyber Risk Index (2H’ 2021): An Assessment for Security Leaders
Credit to Author: Jon Clay| Date: Mon, 18 Apr 2022 00:00:00 +0000
We take a look at our latest Cyber Risk Index (CRI) findings across North America, Europe, Asia-Pacific, and Latin/South America, to help security leaders better understand, communicate, and address their enterprise’s cyber risk.
Read moreCybersecurity Basics: Authentication and Authorization
Credit to Author: Melanie Tafelski| Date: Wed, 13 Apr 2022 00:00:00 +0000
With most security incidents caused by exposed secrets in DevOps pipelines and tools, proper authentication and authorization is essential. Explore the basics of strong identity management to build more resilient apps.
Read more