trend micro research : exploits & vulnerabilities – Page 7

Iron Tiger’s SysUpdate Reappears, Adds Linux Targeting

March 1, 2023 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network

Credit to Author: Daniel Lunghi| Date: Wed, 01 Mar 2023 00:00:00 +0000

We detail the update that advanced persistent threat (APT) group Iron Tiger made on the custom malware family SysUpdate. In this version, we also found components that enable the malware to compromise Linux systems.

Security TrendMicro

Invitation to a Secret Event: Uncovering Earth Yako’s Campaigns

February 16, 2023 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : network

Credit to Author: Hara Hiroaki| Date: Thu, 16 Feb 2023 00:00:00 +0000

We detail the intrusion set Earth Yako, attributed to the campaign Operation RestyLink or EneLink. This analysis was presented in full at the JSAC 2023 in January 2023.

Security TrendMicro

Attacking The Supply Chain: Developer

January 25, 2023 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : mobile

Credit to Author: David Fiser| Date: Wed, 25 Jan 2023 00:00:00 +0000

In this proof of concept, we look into one of several attack vectors that can be abused to attack the supply chain: targeting the developer. With a focus on the local integrated developer environment (IDE), this proof considers the execution of malicious build scripts via injecting commands when the project or build is incorrectly “trusted”.

Security TrendMicro

What is Red Teaming & How it Benefits Orgs

January 11, 2023 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : expert perspective, trend micro research : exploits & vulnerabilities

Credit to Author: Michael Draeger| Date: Tue, 10 Jan 2023 00:00:00 +0000

Running real-world attack simulations can help improve organizations’ cybersecurity resilience

Security TrendMicro

Detecting Windows AMSI Bypass Techniques

December 21, 2022 admin trend micro research : articles, news, reports, trend micro research : cyber crime, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware

Credit to Author: Jiri Sykora| Date: Wed, 21 Dec 2022 00:00:00 +0000

We look into some of the implementations that cybercriminals use to bypass the Windows Antimalware Scan Interface (AMSI) and how security teams can detect threats attempting to abuse it for compromise with Trend Micro Vision One™.

Security TrendMicro

A Technical Analysis of CVE-2022-22583 and CVE-2022-32800

December 21, 2022 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Mickey Jin| Date: Wed, 21 Dec 2022 00:00:00 +0000

This blog entry discusses the technical details of how we exploited CVE-2022-22583 using a different method. We also tackle the technical details of CVE-2022-32800, another SIP-bypass that we discovered more recently, in this report.

Security TrendMicro

Trend Micro Joins Google’s App Defense Alliance

December 20, 2022 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : latest news

Credit to Author: Jon Clay| Date: Fri, 16 Dec 2022 00:00:00 +0000

Trend Micro will be joining Google’s App Defense Alliance (ADA) to help improve their ability to identify malicious apps before they are published to the Google Play store.

Security TrendMicro

Diving into an Old Exploit Chain and Discovering 3 new SIP-Bypass Vulnerabilities

December 19, 2022 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Mickey Jin| Date: Tue, 20 Dec 2022 00:00:00 +0000

More than two years ago, a researcher, A2nkF demonstrated the exploit chain from root privilege escalation to SIP-Bypass up to arbitrary kernel extension loading. In this blog entry, we will discuss how we discovered 3 more vulnerabilities from the old exploit chain.