Credit to Author: Aira Marcelo| Date: Thu, 19 Dec 2024 00:00:00 +0000
In this blog entry, Trend Micro’s Managed XDR team discuss their investigation into how the latest variant of NodeStealer is delivered through spear-phishing attacks, potentially leading to malware execution, data theft, and the exfiltration of sensitive information via Telegram.
Read moreCredit to Author: Feike Hacquebord| Date: Tue, 17 Dec 2024 00:00:00 +0000
APT group Earth Koshchei, suspected to be sponsored by the SVR, executed a large-scale rogue RDP campaign using spear-phishing emails, red team tools, and sophisticated anonymization techniques to target high-profile sectors.
Read moreCredit to Author: Catherine Loveria| Date: Fri, 13 Dec 2024 00:00:00 +0000
In this blog entry, we discuss a social engineering attack that tricked the victim into installing a remote access tool, triggering DarkGate malware activities and an attempted C&C connection.
Read moreCredit to Author: Morton Swimmer| Date: Wed, 04 Dec 2024 00:00:00 +0000
Our research into Retrieval Augmented Generation (RAG) systems uncovered at least 80 unprotected servers. We highlight this problem, which can lead to potential data loss and unauthorized access.
Read moreCredit to Author: Sunil Bharti| Date: Tue, 03 Dec 2024 00:00:00 +0000
Our researchers identified threat actors exploiting misconfigured Docker servers to spread the Gafgyt malware. This threat traditionally targets IoT devices; this new tactic signals a change in its behavior.
Read moreCredit to Author: Sunil Bharti| Date: Tue, 03 Dec 2024 00:00:00 +0000
Our researchers identified threat actors exploiting misconfigured Docker servers to spread the Gafgyt malware. This threat traditionally targets IoT devices; this new tactic signals a change in its behavior.
Read moreCredit to Author: Hara Hiroaki| Date: Tue, 26 Nov 2024 00:00:00 +0000
Trend Micro has identified a spear-phishing campaign active in Japan since June 2024. Evidence about the malware used by this campaign suggests this was part of a new operation by Earth Kasha.
Read moreCredit to Author: Leon M Chang| Date: Mon, 25 Nov 2024 00:00:00 +0000
Since 2023, APT group Earth Estries has aggressively targeted key industries globally with sophisticated techniques and new backdoors, like GHOSTSPIDER and MASOL RAT, for prolonged espionage operations.
Read more