Thursday, November 21, 2024
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

trend micro research : apt & targeted attacks

Security TrendMicro 

Threat Actors Target the Middle East Using Fake Palo Alto GlobalProtect Tool

admin , , , , ,

Credit to Author: Mohamed Fahmy| Date: Thu, 29 Aug 2024 00:00:00 +0000

Threat actors are targeting users in the Middle East by distributing sophisticated malware disguised as the Palo Alto GlobalProtect tool.

Read more
Security TrendMicro 

A Dive into Earth Baku’s Latest Campaign

admin , , ,

Credit to Author: Ted Lee| Date: Fri, 09 Aug 2024 00:00:00 +0000

Since late 2022, Earth Baku has broadened its scope from the Indo-Pacific region to Europe, the Middle East, and Africa. Their latest operations demonstrate sophisticated techniques, such as exploiting public-facing applications like IIS servers for initial access and deploying the Godzilla webshell for command and control.

Read more
Security TrendMicro 

Behind the Great Wall: Void Arachne Targets Chinese-Speaking Users With the Winos 4.0 C&C Framework

admin , , , ,

Credit to Author: Peter Girnus| Date: Wed, 19 Jun 2024 00:00:00 +0000

We recently discovered a new threat actor group that we dubbed Void Arachne. This group targets Chinese-speaking users with malicious Windows Installer (MSI) files in a recent campaign. These MSI files contain legitimate software installer files for AI software and other popular software but are bundled with malicious Winos payloads.

Read more
Security TrendMicro 

Decoding Water Sigbin’s Latest Obfuscation Tricks

admin , , , , , ,

Credit to Author: Sunil Bharti| Date: Thu, 30 May 2024 00:00:00 +0000

Water Sigbin (aka the 8220 Gang) exploited the Oracle WebLogic vulnerabilities CVE-2017-3506 and CVE-2023-21839 to deploy a cryptocurrency miner using a PowerShell script. The threat actor also adopted new techniques to conceal its activities, making attacks harder to defend against.

Read more
Security TrendMicro 

Tracking the Progression of Earth Hundun’s Cyberespionage Campaign in 2024

admin , , , ,

Credit to Author: Pierre Lee| Date: Thu, 16 May 2024 00:00:00 +0000

This report describes how Waterbear and Deuterbear — two of the tools in Earth Hundun’s arsenal — operate, based on a campaign from 2024.

Read more
Security TrendMicro 

Router Roulette: Cybercriminals and Nation-States Sharing Compromised Networks

admin , , , ,

Credit to Author: Feike Hacquebord| Date: Wed, 01 May 2024 00:00:00 +0000

This blog entry aims to highlight the dangers of internet-facing routers and elaborate on Pawn Storm’s exploitation of EdgeRouters, complementing the FBI’s advisory from February 27, 2024.

Read more
Security TrendMicro 

Cyberespionage Group Earth Hundun’s Continuous Refinement of Waterbear and Deuterbear

admin , , , ,

Credit to Author: Cyris Tseng| Date: Thu, 11 Apr 2024 00:00:00 +0000

Our blog entry provides an in-depth analysis of Earth Hundun’s Waterbear and Deuterbear malware.

Read more
Security TrendMicro 

How Red Team Exercises Increases Your Cyber Health

admin , , , , , , ,

Credit to Author: Johnny Krogsboll| Date: Thu, 11 Apr 2024 00:00:00 +0000

Delve into the world of red team exercises, their vital role in enhancing organizational security through simulated cyberattacks, including tactics like phishing and lateral movement within networks, and understand the need for regular testing and improvement to counter evolving threats effectively.

Read more