Credit to Author: David Fiser| Date: Thu, 29 Sep 2022 00:00:00 +0000
In this entry, we discuss how developers can use custom cloud container image and the distroless approach to minimize security gaps in Azure Functions.
Read moreCredit to Author: Vladimir Kropotov| Date: Tue, 27 Sep 2022 00:00:00 +0000
The growing appearance of deepfake attacks is significantly reshaping the threat landscape. These fakes brings attacks such as business email compromise (BEC) and identity verification bypassing to new levels.
Read moreCredit to Author: Ryan Flores| Date: Tue, 20 Sep 2022 00:00:00 +0000
Our research examines the security flaws that we found in the logistics API implementation of e-commerce platforms that can potentially expose the consumers’ personal information. We discuss the security risks that such flaws present for software engineers, e-commerce platform providers, and consumers.
Read moreCredit to Author: Sunil Bharti| Date: Wed, 14 Sep 2022 00:00:00 +0000
This blog entry details how Trend Micro Cloud One™ – Workload Security and Trend Micro Vision One™ effectively detected and blocked the abuse of the CVE-2020-14882 WebLogic vulnerability in affected endpoints.
Read moreCredit to Author: Nitesh Surana| Date: Thu, 08 Sep 2022 00:00:00 +0000
Through our honeypots and telemetry, we were able to observe instances in which malicious actors abused native Linux tools to launch attacks on Linux environments. In this blog entry, we discuss how these utilities were used and provide recommendations on how to minimize their impact.
Read moreCredit to Author: Alfredo Oliveira| Date: Wed, 07 Sep 2022 00:00:00 +0000
We analyzed the Distroless technique for reducing the size of container images and explored its capabilities to address security concerns. We provide an alternative approach to Distroless that reduces the attack surface for malicious actors targeting cloud-native applications while optimizing cloud resources.
Read moreCredit to Author: Don Ovid Ladores| Date: Tue, 06 Sep 2022 00:00:00 +0000
Play is a new ransomware that takes a page out of Hive and Nokoyawa’s playbook. The many similarities among them indicate that Play, like Nokoyawa, are operated by the same people.
Read moreCredit to Author: Don Ovid Ladores| Date: Tue, 06 Sep 2022 00:00:00 +0000
Play is a new ransomware that takes a page out of Hive and Nokoyawa’s playbook. The many similarities among them indicate that Play, like Nokoyawa, may be a Hive affiliate.
Read moreCredit to Author: Vickie Su| Date: Fri, 02 Sep 2022 00:00:00 +0000
In March 2021, we investigated a backdoor with a unique modular architecture and called it BumbleBee due to a string embedded in the malware. However, in our recent investigations, we have discovered a controller application that expands its capabilities.
Read moreCredit to Author: Trend Micro Research| Date: Wed, 31 Aug 2022 00:00:00 +0000
This blog entry highlights the threats that dominated the first six months of the year, which we discussed in detail in our midyear cybersecurity roundup report, “Defending the Expanding Attack Surface.”
Read more