trend micro research : exploits & vulnerabilities – Page 2

Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective

Credit to Author: Shubham Singh| Date: Fri, 05 Jul 2024 00:00:00 +0000

In this blog entry, we will discuss how the Jenkins Script Console can be weaponized by attackers for cryptomining activity if not configured properly.

Security TrendMicro

AI Pulse: Siri Says Hi to OpenAI, Deepfake Olympics & more

June 28, 2024 admin trend micro research : articles, news, reports, trend micro research : artificial intelligence (ai), trend micro research : cloud, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : latest news

Credit to Author: AI Team| Date: Fri, 28 Jun 2024 00:00:00 +0000

AI Pulse is a new blog series from Trend Micro on the latest cybersecurity AI news. In this edition: Siri says hi to OpenAI, fraud hogs the AI cybercrime spotlight, and why the Paris Olympics could be a hotbed of deepfakery.

Security TrendMicro

Examining Water Sigbin’s Infection Routine Leading to an XMRig Cryptominer

June 27, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : research

Credit to Author: Ahmed Mohamed Ibrahim | Date: Fri, 28 Jun 2024 00:00:00 +0000

We analyze the multi-stage loading technique used by Water Sigbin to deliver the PureCrypter loader and XMRIG crypto miner.

Security TrendMicro

Omdia Report: Trend Disclosed 60% of Vulnerabilities

June 25, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : reports

Credit to Author: Dustin Childs| Date: Tue, 25 Jun 2024 00:00:00 +0000

The latest Omdia Vulnerability Report shows Trend MicroTM Zero Day InitiativeTM (ZDI) spearheaded 60% of 2023 disclosures, underscoring its role in cybersecurity threat prevention.

Security TrendMicro

Decoding Water Sigbin’s Latest Obfuscation Tricks

May 29, 2024 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : reports, trend micro research : research

Credit to Author: Sunil Bharti| Date: Thu, 30 May 2024 00:00:00 +0000

Water Sigbin (aka the 8220 Gang) exploited the Oracle WebLogic vulnerabilities CVE-2017-3506 and CVE-2023-21839 to deploy a cryptocurrency miner using a PowerShell script. The threat actor also adopted new techniques to conceal its activities, making attacks harder to defend against.

Security TrendMicro

Importance of Scanning Files on Uploader Applications

April 15, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities, trend micro research : malware

Credit to Author: Fernando Cardoso| Date: Fri, 12 Apr 2024 00:00:00 +0000

Delve into the crucial practice of file scanning within uploader applications, and learn defensive measures to safeguards against malicious threats like malware.

Security TrendMicro

Why a Cloud Security Platform Approach is Critical

April 15, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : security strategies

Credit to Author: Fernando Cardoso| Date: Wed, 03 Apr 2024 00:00:00 +0000

Explore how a cybersecurity platform with attack surface management and runtime protection capabilities can enhance your cloud security posture.

Security TrendMicro

TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types

March 19, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : ransomware, trend micro research : research

Credit to Author: Junestherry Dela Cruz| Date: Tue, 19 Mar 2024 00:00:00 +0000

CVE-2024-27198 and CVE-2024-27199 are vulnerabilities within the TeamCity On-Premises platform that can allow attackers to gain administrative control over affected systems.