trend micro research : malware – Page 5

Earth Estries Targets Government, Tech for Cyberespionage

August 30, 2023 0 Comments trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network

Credit to Author: Ted Lee| Date: Wed, 30 Aug 2023 00:00:00 +0000

We break down a new cyberespionage campaign deployed by a cybercriminal group we named Earth Estries. Analyzing the tactics, techniques, and procedures (TTPs) employed, we observed overlaps with the advanced persistent threat (APT) group FamousSparrow as Earth Estries targets governments and organizations in the technology sector.

Security TrendMicro

Stealthy Android Malware MMRat Carries Out Bank Fraud Via Fake App Stores

August 29, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : malware, trend micro research : mobile, trend micro research : research

Credit to Author: Trend Micro Research| Date: Tue, 29 Aug 2023 00:00:00 +0000

The Trend Micro Mobile Application Reputation Service (MARS) team discovered a new, fully undetected Android banking trojan, dubbed MMRat, that has been targeting mobile users in Southeast Asia since late June 2023.

Security TrendMicro

Profile Stealers Spread via LLM-themed Facebook Ads

August 22, 2023 0 Comments trend micro research : latest news, trend micro research : malware, trend micro research : research

Credit to Author: Jindrich Karasek| Date: Wed, 23 Aug 2023 00:00:00 +0000

In this entry, we discuss how a threat actor abuses paid Facebook promotions featuring LLMs to spread malicious code, with the goal of installing a malicious browser add-on and stealing victims’ credentials.

Security TrendMicro

TargetCompany Ransomware Abuses FUD Obfuscator Packers

August 7, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : data center, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network, trend micro research : ransomware

Credit to Author: Don Ovid Ladores| Date: Mon, 07 Aug 2023 00:00:00 +0000

In this entry, we detail our analysis of how the TargetCompany ransomware abused an iteration of fully undetectable (FUD) obfuscator engine BatCloak to infect vulnerable systems.

Security TrendMicro

Latest Batloader Campaigns Use Pyarmor Pro for Evasion

August 4, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Junestherry Dela Cruz| Date: Mon, 07 Aug 2023 00:00:00 +0000

In June 2023, Trend Micro observed an upgrade to the evasion techniques used by the Batloader initial access malware, which we’ve covered in previous blog entries.

Security TrendMicro

Related CherryBlos and FakeTrade Android Malware Involved in Scam Campaigns

July 28, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : malware, trend micro research : mobile, trend micro research : research

Credit to Author: Trend Micro Research| Date: Fri, 28 Jul 2023 00:00:00 +0000

Trend Micro’s Mobile Application Reputation Service (MARS) team discovered two new related Android malware families involved in cryptocurrency-mining and financially-motivated scam campaigns targeting Android users.

Security TrendMicro

Possible Supply-Chain Attack Targeting Pakistani Government Delivers Shadowpad

July 18, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Daniel Lunghi| Date: Fri, 14 Jul 2023 00:00:00 +0000

We recently found that a modified installer of the E-Office app used by the Pakistani government delivered a Shadowpad sample, suggesting a possible supply-chain attack.

Security TrendMicro

Supply-Chain Attack Targeting Pakistani Government Delivers Shadowpad

July 14, 2023 0 Comments trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Daniel Lunghi| Date: Fri, 14 Jul 2023 00:00:00 +0000

We recently found that an MSI installer built by the National Information Technology Board (NITB), a Pakistani government entity, delivered a Shadowpad sample, suggesting a possible supply-chain attack.

Security TrendMicro

Detecting BPFDoor Backdoor Variants Abusing BPF Filters

July 13, 2023 0 Comments trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : iot, trend micro research : malware, trend micro research : network

Credit to Author: Fernando Merces| Date: Thu, 13 Jul 2023 00:00:00 +0000

An analysis of advanced persistent threat (APT) group Red Menshen’s different variants of backdoor BPFDoor as it evolves since it was first documented in 2021.

Security TrendMicro

Hunting for A New Stealthy Universal Rootkit Loader

July 11, 2023 0 Comments trend micro research : cyber threats, trend micro research : latest news, trend micro research : malware, trend micro research : research

Credit to Author: Sherif Magdy| Date: Tue, 11 Jul 2023 00:00:00 +0000

In this entry, we discuss the findings of our investigation into a piece of a signed rootkit, whose main binary functions as a universal loader that enables attackers to directly load a second-stage unsigned kernel module.