TrendMicro – Page 7 – Computer Security Articles

How to Write a Generative AI Cybersecurity Policy

July 29, 2024 admin trend micro research : articles, news, reports, trend micro research : artificial intelligence (ai), trend micro research : cloud, trend micro research : network, trend micro research : security strategies, trend micro research : web

Credit to Author: Greg Young| Date: Mon, 29 Jul 2024 00:00:00 +0000

It’s clear that generative AI is a permanent addition to the enterprise IT toolbox. For CISOs, the pressure is on to roll out AI security policies and technologies that can mitigate very real and present risks.

Security TrendMicro

QR Codes: Convenience or Cyberthreat?

July 23, 2024 admin trend micro research : articles, news, reports, trend micro research : artificial intelligence (ai), trend micro research : cloud, trend micro research : phishing, trend micro research : ransomware, trend micro research : security strategies, trend micro research : web

Credit to Author: Sara Atie| Date: Tue, 23 Jul 2024 00:00:00 +0000

Security awareness and measures to detect and prevent sophisticated risks associated with QR code-based phishing attacks (quishing)

Security TrendMicro

Play Ransomware Group’s New Linux Variant Targets ESXi, Shows Ties With Prolific Puma

July 19, 2024 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : ransomware, trend micro research : research

Credit to Author: Cj Arsley Mateo| Date: Fri, 19 Jul 2024 00:00:00 +0000

Trend Micro threat hunters discovered that the Play ransomware group has been deploying a new Linux variant that targets ESXi environments. Read our blog entry to know more.

Security TrendMicro

The Potential Impact of the OpenSSH Vulnerabilities CVE-2024–6387 and CVE-2024-6409

July 17, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Jagir Shastri| Date: Wed, 17 Jul 2024 00:00:00 +0000

We check the OpenSSH vulnerabilities CVE-2024–6387 and CVE-2024-6409, examining their potential real-world impact and the possibility of exploitation for CVE-2024–6387 in x64 systems.

Security TrendMicro

CVE-2024-38112: Void Banshee Targets Windows Users Through Zombie Internet Explorer in Zero-Day Attacks

July 15, 2024 admin trend micro research : exploits & vulnerabilities

Credit to Author: Peter Girnus| Date: Mon, 15 Jul 2024 00:00:00 +0000

Our threat hunters discovered CVE-2024-38112, which was used as a zero-day by APT group Void Banshee, to access and execute files through the disabled Internet Explorer using MSHTML. We promptly identified and reported this zero-day vulnerability to Microsoft, and it has been patched.

Security TrendMicro

Network detection & response: the SOC stress reliever

July 9, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : network, trend micro research : security strategies

Credit to Author: Trend Micro Research| Date: Tue, 09 Jul 2024 00:00:00 +0000

Cybersecurity teams are well-equipped to handle threats to technology assets that they manage. But with unmanaged devices providing ideal spots for attackers to lurk unseen, network detection and response capabilities have become vitally important.

Security TrendMicro

Why You Need Network Detection & Response Now

Credit to Author: Trend Micro Research| Date: Tue, 09 Jul 2024 00:00:00 +0000

Security TrendMicro

Turning Jenkins Into a Cryptomining Machine From an Attacker’s Perspective

July 5, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : research

Credit to Author: Shubham Singh| Date: Fri, 05 Jul 2024 00:00:00 +0000

In this blog entry, we will discuss how the Jenkins Script Console can be weaponized by attackers for cryptomining activity if not configured properly.