trend micro research : exploits & vulnerabilities – Page 7

Unpacking the Structure of Modern Cybercrime Organizations

April 3, 2023 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: David Sancho| Date: Mon, 03 Apr 2023 00:00:00 +0000

We examine three differently sized criminal groups to know how they compare to similarly sized legitimate businesses in terms of how they are organized. We also discuss how threat researchers can use their knowledge of the size and structure of a target criminal organization to aid their investigation.

Security TrendMicro

S4x23 Review Part 4: Cybersecurity for Industrial IoT

March 31, 2023 admin trend micro research : articles, news, reports, trend micro research : compliance & risks, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : ics ot, trend micro research : iot, trend micro research : security strategies

Credit to Author: Kazuhisa Tagaya| Date: Fri, 31 Mar 2023 00:00:00 +0000

In this fourth article, I introduce the discussion related to Industrial IoT, that is involved challenges to adopt cybersecurity strategy into modernizing environment.

Security TrendMicro

Iron Tiger’s SysUpdate Reappears, Adds Linux Targeting

March 1, 2023 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network

Credit to Author: Daniel Lunghi| Date: Wed, 01 Mar 2023 00:00:00 +0000

We detail the update that advanced persistent threat (APT) group Iron Tiger made on the custom malware family SysUpdate. In this version, we also found components that enable the malware to compromise Linux systems.

Security TrendMicro

Invitation to a Secret Event: Uncovering Earth Yako’s Campaigns

February 16, 2023 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network

Credit to Author: Hara Hiroaki| Date: Thu, 16 Feb 2023 00:00:00 +0000

We detail the intrusion set Earth Yako, attributed to the campaign Operation RestyLink or EneLink. This analysis was presented in full at the JSAC 2023 in January 2023.

Security TrendMicro

Attacking The Supply Chain: Developer

January 25, 2023 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : mobile

Credit to Author: David Fiser| Date: Wed, 25 Jan 2023 00:00:00 +0000

In this proof of concept, we look into one of several attack vectors that can be abused to attack the supply chain: targeting the developer. With a focus on the local integrated developer environment (IDE), this proof considers the execution of malicious build scripts via injecting commands when the project or build is incorrectly “trusted”.

Security TrendMicro

What is Red Teaming & How it Benefits Orgs

January 11, 2023 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities

Credit to Author: Michael Draeger| Date: Tue, 10 Jan 2023 00:00:00 +0000

Running real-world attack simulations can help improve organizations’ cybersecurity resilience

Security TrendMicro

Detecting Windows AMSI Bypass Techniques

December 21, 2022 admin trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware

Credit to Author: Jiri Sykora| Date: Wed, 21 Dec 2022 00:00:00 +0000

We look into some of the implementations that cybercriminals use to bypass the Windows Antimalware Scan Interface (AMSI) and how security teams can detect threats attempting to abuse it for compromise with Trend Micro Vision One™.

Security TrendMicro

A Technical Analysis of CVE-2022-22583 and CVE-2022-32800

December 21, 2022 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Mickey Jin| Date: Wed, 21 Dec 2022 00:00:00 +0000

This blog entry discusses the technical details of how we exploited CVE-2022-22583 using a different method. We also tackle the technical details of CVE-2022-32800, another SIP-bypass that we discovered more recently, in this report.