Credit to Author: Mohamed Fahmy| Date: Fri, 29 Sep 2023 00:00:00 +0000
We observed and tracked the advanced persistent threat (APT) APT34 group with a new malware variant accompanying a phishing attack comparatively similar to the SideTwist backdoor malware. Following the campaign, the group abused a fake license registration form of an African government agency to target a victim in Saudi Arabia.
Read moreCredit to Author: Shannon Murphy| Date: Thu, 21 Sep 2023 00:00:00 +0000
This year, the MITRE Engenuity ATT&CK evaluation tested cybersecurity vendors against simulated attack scenarios mimicking the adversary group “Turla.” Learn about Trend Micro’s 100% successful protection performance.
Read moreCredit to Author: Salim S.I.| Date: Wed, 20 Sep 2023 00:00:00 +0000
Crafted packets from cellular devices such as mobile phones can exploit faulty state machines in the 5G core to attack cellular infrastructure. Smart devices that critical industries such as defense, utilities, and the medical sectors use for their daily operations depend on the speed, efficiency, and productivity brought by 5G. This entry describes CVE-2021-45462 as a potential use case to deploy a denial-of-service (DoS) attack to private 5G networks.
Read moreCredit to Author: Ed Cabrera| Date: Tue, 19 Sep 2023 00:00:00 +0000
Behind the scenes of the world of vulnerability intelligence and threat hunting
Read moreCredit to Author: Ed Cabrera| Date: Fri, 01 Sep 2023 00:00:00 +0000
A long and challenging journey against cybercrime around the world
Read moreCredit to Author: Paul Pajares| Date: Fri, 01 Sep 2023 00:00:00 +0000
In this entry, we summarize the security analyses and investigations done on phishing-as-a-service 16shop through the years. We also outline the partnership between Trend Micro and Interpol in taking down the main administrators and servers of this massive phishing campaign.
Read moreCredit to Author: Ted Lee| Date: Wed, 30 Aug 2023 00:00:00 +0000
We break down a new cyberespionage campaign deployed by a cybercriminal group we named Earth Estries. Analyzing the tactics, techniques, and procedures (TTPs) employed, we observed overlaps with the advanced persistent threat (APT) group FamousSparrow as Earth Estries targets governments and organizations in the technology sector.
Read moreCredit to Author: Ed Cabrera| Date: Mon, 21 Aug 2023 00:00:00 +0000
Ed Cabrera, former CISO of the US Secret Service and current Chief Cybersecurity Officer for Trend Micro, explains why Federal agencies are slow to comply with Biden’s cybersecurity executive order.
Read moreCredit to Author: William Malik| Date: Mon, 14 Aug 2023 00:00:00 +0000
Rethinking learning metrics and fostering critical thinking in the era of generative AI and LLMs
Read moreCredit to Author: Alifiya Sadikali| Date: Wed, 09 Aug 2023 00:00:00 +0000
Discover the core principles and frameworks of Zero Trust, NIST 800-207 guidelines, and best practices when implementing CISA’s Zero Trust Maturity Model.
Read more