TrendMicro – Page 2 – Computer Security Articles

Unmasking Prometei: A Deep Dive Into Our MXDR Findings

October 23, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : research

Credit to Author: Buddy Tancio| Date: Wed, 23 Oct 2024 00:00:00 +0000

How does Prometei insidiously operate in a compromised system? This Managed Extended Detection and Response investigation conducted with the help of Trend Vision One provides a comprehensive analysis of the inner workings of this botnet so users can stop the threat in its tracks before it inflicts damage to the system.

Security TrendMicro

Using gRPC and HTTP/2 for Cryptominer Deployment: An Unconventional Approach

October 22, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : latest news

Credit to Author: Abdelrahman Esmail| Date: Tue, 22 Oct 2024 00:00:00 +0000

In this blog entry, we discuss how malicious actors are exploiting Docker remote API servers via gRPC/h2c to deploy the cryptominer SRBMiner to facilitate their mining of XRP on Docker hosts.

Security TrendMicro

Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East

October 21, 2024 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : research

Credit to Author: Mohamed Fahmy| Date: Fri, 11 Oct 2024 00:00:00 +0000

Trend Micro’s investigation into the recent activity of Earth Simnavaz provides new insights into the APT group’s evolving tactics and the immediate threat it poses to sectors in the Middle East.

Security TrendMicro

Attackers Target Exposed Docker Remote API Servers With perfctl Malware

October 21, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : malware, trend micro research : research

Credit to Author: Sunil Bharti| Date: Mon, 21 Oct 2024 00:00:00 +0000

We observed an unknown threat actor abusing exposed Docker remote API servers to deploy the perfctl malware.

Security TrendMicro

How to Mitigate the Impact of Rogue AI Risks

October 17, 2024 admin trend micro research : articles, news, reports, trend micro research : artificial intelligence (ai), trend micro research : cloud, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : expert perspective

Credit to Author: AI Team| Date: Thu, 17 Oct 2024 00:00:00 +0000

This is the latest blog in an ongoing series on Rogue AI. Keep following for more technical guidance, case studies, and insights.

Security TrendMicro

Fake LockBit, Real Damage: Ransomware Samples Abuse AWS S3 to Steal Data

October 16, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : ransomware, trend micro research : research

Credit to Author: Jaromir Horejsi| Date: Wed, 16 Oct 2024 00:00:00 +0000

This article uncovers a Golang ransomware abusing AWS S3 for data theft, and masking as LockBit to further pressure victims. The discovery of hard-coded AWS credentials in these samples led to AWS account suspensions.

Security TrendMicro

Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions

October 15, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : research

Credit to Author: Jacob Santos| Date: Tue, 15 Oct 2024 00:00:00 +0000

Trend Micro’s Threat Hunting Team discovered EDRSilencer, a red team tool that threat actors are attempting to abuse for its ability to block EDR traffic and conceal malicious activity.

Security TrendMicro

Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware

October 14, 2024 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : research

Credit to Author: Charles Adrian Marty| Date: Mon, 14 Oct 2024 00:00:00 +0000

Trend Micro researchers have uncovered a surge of malicious activities involving a threat actor group that we track as Water Makara. This group is targeting enterprises in Brazil, deploying banking malware using obfuscated JavaScript to slip past security defenses.