trend micro research : research – Computer Security Articles

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024

January 17, 2025 admin 0 Comments trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : iot, trend micro research : malware, trend micro research : research

Credit to Author: Trend Micro Research| Date: Fri, 17 Jan 2025 00:00:00 +0000

Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.

Security TrendMicro

Investigating A Web Shell Intrusion With Trend Micro™ Managed XDR

January 14, 2025 admin 0 Comments trend micro research : exploits & vulnerabilities, trend micro research : research, trend micro research : risk management

Credit to Author: Stephen Carbery| Date: Tue, 14 Jan 2025 00:00:00 +0000

This blog discusses a web shell intrusion incident where attackers abused the IIS worker to exfiltrate stolen data.

Security TrendMicro

How Cracks and Installers Bring Malware to Your Device

January 10, 2025 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Ryan Maglaque| Date: Fri, 10 Jan 2025 00:00:00 +0000

Our research shows how attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.

Security TrendMicro

Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit

January 9, 2025 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : malware, trend micro research : research

Credit to Author: Sarah Pearl Camiling| Date: Thu, 09 Jan 2025 00:00:00 +0000

Our blog entry discusses a fake PoC exploit for LDAPNightmare (CVE-2024-49113) that is being used to distribute information-stealing malware.

Security TrendMicro

Trend Micro Contributes and Maps Container Security to MITRE ATT&CK: A Game-Changer for Cyber Defense

January 7, 2025 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : research

Credit to Author: Bestin Koruthu| Date: Tue, 07 Jan 2025 00:00:00 +0000

Trend Micro leads the way by mapping its Container Security detection capabilities to the MITRE ATT&CK framework for Containers and contributing real-world attack data.

Security TrendMicro

Python-Based NodeStealer Version Targets Facebook Ads Manager

December 19, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : malware, trend micro research : research

Credit to Author: Aira Marcelo| Date: Thu, 19 Dec 2024 00:00:00 +0000

In this blog entry, Trend Micro’s Managed XDR team discuss their investigation into how the latest variant of NodeStealer is delivered through spear-phishing attacks, potentially leading to malware execution, data theft, and the exfiltration of sensitive information via Telegram.

Security TrendMicro

Earth Koshchei Coopts Red Team Tools in Complex RDP Attacks

December 17, 2024 admin trend micro research : apt & targeted attacks, trend micro research : latest news, trend micro research : research

Credit to Author: Feike Hacquebord| Date: Tue, 17 Dec 2024 00:00:00 +0000

APT group Earth Koshchei, suspected to be sponsored by the SVR, executed a large-scale rogue RDP campaign using spear-phishing emails, red team tools, and sophisticated anonymization techniques to target high-profile sectors.

Security TrendMicro

Vishing via Microsoft Teams Facilitates DarkGate Malware Intrusion

December 13, 2024 admin trend micro research : cyber threats, trend micro research : latest news, trend micro research : research

Credit to Author: Catherine Loveria| Date: Fri, 13 Dec 2024 00:00:00 +0000

In this blog entry, we discuss a social engineering attack that tricked the victim into installing a remote access tool, triggering DarkGate malware activities and an attempted C&C connection.

← Previous