trend micro research : articles, news, reports – Page 31

Alibaba OSS Buckets Compromised to Distribute Malicious Shell Scripts via Steganography

July 21, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : malware, trend micro research : research

Credit to Author: Alfredo Oliveira| Date: Thu, 21 Jul 2022 00:00:00 +0000

In this blog entry, we discuss a malicious campaign that targets Alibaba Cloud’s OSS buckets with leaked credentials for malware distribution and cryptojacking.

Security TrendMicro

Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data

July 20, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : exploits & vulnerabilities, trend micro research : network, trend micro research : research

Credit to Author: Joelson Soares| Date: Wed, 20 Jul 2022 00:00:00 +0000

We discovered the use of two Python penetration-testing tools, Impacket and Responder, that malicious actors used to compromise systems and exfiltrate data. We share our key findings in this report.

Security TrendMicro

Data Distribution Service: Mitigating Risks Part 3

July 14, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : exploits & vulnerabilities, trend micro research : ics ot, trend micro research : research

In the final chapter of our blog series, we discuss mitigating strategies and recommendations to keep DDS protected from malicious actors.

Security TrendMicro

Data Distribution Service: Exploring Vulnerabilities and Risks Part 2

July 14, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : exploits & vulnerabilities, trend micro research : ics ot, trend micro research : research

In part two of our series, we’ll highlight both known and new DDS vulnerabilities and what they mean for mission critical operations.

Security TrendMicro

How Shady Code Commits Compromise the Security of the Open-Source Ecosystem

July 11, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : research

Credit to Author: Trend Micro Research| Date: Mon, 11 Jul 2022 00:00:00 +0000

In this blog entry, we discuss how open-source code has been subjected to protest-driven code modifications by its maintainers or backers. We also provide an analysis of what these incidents could mean for the IT industry and the open source community.

Security TrendMicro

Private 5G Network Security Expectations Part 3

July 11, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : ics ot, trend micro research : iot, trend micro research : mobile, trend micro research : privacy & risks, trend micro research : research

Credit to Author: Jun Morimoto| Date: Mon, 11 Jul 2022 00:00:00 +0000

How to secure your private 5G networks; The challenge of complex ecosystem in DX.

Security TrendMicro

Private 5G Network Security Expectations Part 2

July 8, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : ics ot, trend micro research : iot, trend micro research : mobile, trend micro research : privacy & risks, trend micro research : research

Credit to Author: Jun Morimoto| Date: Tue, 05 Jul 2022 00:00:00 +0000

The importance of proof of “security” concepts in private 5G networks: Are verifications of system operations and new functions sufficient for your proof of concept in private wireless networks?

Security TrendMicro

Unpacking Cloud-Based Cryptocurrency Miners That Abuse GitHub Actions and Azure Virtual Machines

July 7, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Magno Logan| Date: Thu, 07 Jul 2022 00:00:00 +0000

We investigate cloud-based cryptocurrency miners that leverage GitHub Actions and Azure virtual machines, including the cloud infrastructure and vulnerabilities that malicious actors exploit for easy monetary gain.

Security TrendMicro

Private 5G Network Security Expectations Part 1

July 6, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : ics ot, trend micro research : iot, trend micro research : mobile, trend micro research : privacy & risks, trend micro research : research

Credit to Author: Jun Morimoto| Date: Tue, 05 Jul 2022 00:00:00 +0000

Are “new” protocols and “private” networks sufficient for your cybersecurity requirements?

Security TrendMicro

Brand-New HavanaCrypt Ransomware Poses as Google Software Update App, Uses Microsoft Hosting Service IP Address as C&C Server

July 6, 2022 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : ransomware, trend micro research : research

Credit to Author: Nathaniel Morales| Date: Wed, 06 Jul 2022 00:00:00 +0000

We recently found a new ransomware family, which we have dubbed as HavanaCrypt, that disguises itself as a legitimate Google Software Update application and uses a Microsoft web hosting service IP address as its command-and-control (C&C) server to circumvent detection.