Credit to Author: Feike Hacquebord| Date: Tue, 30 May 2023 00:00:00 +0000
Void Rabisu, a malicious actor believed to be associated with the RomCom backdoor, was thought to be driven by financial gain because of its ransomware attacks. But in this blog entry, we discuss how the use of the RomCom backdoor in recent attacks shows how Void Rabisu’s motives seem to have changed since at least October 2022.
Read moreCredit to Author: Sarah Pearl Camiling| Date: Fri, 26 May 2023 00:00:00 +0000
This is an analysis of Bandit Stealer, a new Go-based information-stealing malware capable of evading detection as it targets multiple browsers and cryptocurrency wallets.
Read moreCredit to Author: Kazuhisa Tagaya| Date: Thu, 25 May 2023 00:00:00 +0000
This blog explains the new resources of health industry cybersecurity practices and landscape analysis which the HHS (U.S. Department of Health and Human Services) released in Apr 2023.
Read moreCredit to Author: Joey Costoya| Date: Thu, 25 May 2023 00:00:00 +0000
This blog entry features three case studies that show how malicious actors evade the antispam, antibot, and antiabuse measures of online web services via residential proxies and CAPTCHA-breaking services.
Read moreCredit to Author: Trend Micro Research| Date: Tue, 23 May 2023 00:00:00 +0000
Learn how connected car cyber risk will evolve in the coming years.
Read moreCredit to Author: Joshua Aquino| Date: Tue, 23 May 2023 00:00:00 +0000
In this blog entry, we will examine the security risks related to file extension-related Top-Level Domains (TLDs) while also providing best practices and recommendations on how both individual users and organizations can protect themselves from these hazards.
Read moreCredit to Author: Kazuhisa Tagaya| Date: Fri, 19 May 2023 00:00:00 +0000
This update reports on the current state of cybersecurity in the healthcare industry from the CISA’s keynote in Cybersecurity forum of HIMSS23.
Read moreCredit to Author: Nitesh Surana| Date: Fri, 19 May 2023 00:00:00 +0000
This is the first part of our security analysis of an information stealer targeting GitHub Codespaces (CS) that discusses how attackers can abuse these cloud services for a variety of malicious activities.
Read moreCredit to Author: Fyodor Yarochkin| Date: Wed, 17 May 2023 00:00:00 +0000
An overview of the Lemon Group’s use of preinfected mobile devices, and how this scheme is potentially being developed and expanded to other internet of things (IoT) devices. This research was presented in full at the Black Hat Asia 2023 Conference in Singapore in May 2023.
Read moreCredit to Author: Sunil Bharti| Date: Tue, 16 May 2023 00:00:00 +0000
We observed the threat actor group known as “8220 Gang” employing new strategies for their respective campaigns, including exploits for the Linux utility “lwp-download” and CVE-2017-3506, an Oracle WebLogic vulnerability.
Read more