Cyber Warfare has been a topic of discussion for years but has reached a new level of prominence in this age of hyper-connected critical infrastructure. Our Trend Micro experts touch on this evolution, disinformation campaigns, and cyber mercenaries.
Tag: Trend Micro Research : APT & Targeted Attacks
Security Vendor News
Celebrating 15 Years of Pwn2Own
by Trend Micro Research, News, Perspectives •
Join Erin Sindelar, Mike Gibson, Brian Gorenc, and Dustin Childs as they discuss Pwn2Own’s 15th anniversary, what we’ve learned, and how the program will continue to serve the cybersecurity community in the future.
Security Vendor News
AvosLocker Ransomware Variant Abuses Driver File to Disable Antivirus, Scans for Log4shell
by Christoper Ordonez •
We found an AvosLocker ransomware variant using a legitimate antivirus component to disable detection and blocking solutions.
Security Vendor News
AvosLocker Ransomware Variant Abuses Driver File to Disable Anti-Virus, Scans for Log4shell
by Christoper Ordonez •
We found an AvosLocker ransomware variant using a legitimate anti-virus component to disable detection and blocking solutions.
Security Vendor News
New APT Group Earth Berberoka Targets Gambling Websites With Old and New Malware
by Daniel Lunghi •
We recently found a new advanced persistent threat (APT) group that we have dubbed Earth Berberoka (aka GamblingPuppet). This APT group targets gambling websites on Windows, macOS, and Linux platforms using old and new malware families.
Security Vendor News
New APT Group Earth Berberoka Targets Gambling Websites With Old and New Malware
by Daniel Lunghi •
We recently found a new advanced persistent threat (APT) group that we have dubbed Earth Berberoka (aka GamblingPuppet). This APT group targets gambling websites on Windows, macOS, and Linux platforms using old and new malware families.
Security Vendor News
New APT Group Earth Berberoka Targets Gambling Websites With Old and New Malware
by Daniel Lunghi •
We recently found a new advanced persistent threat (APT) group that we have dubbed Earth Berberoka (aka GamblingPuppet). This APT group targets gambling websites on Windows, macOS, and Linux platforms using old and new malware families.
Security Vendor News
Critically Underrated: Studying the Data Distribution Service (DDS) Protocol
by Trend Micro Research, News, Perspectives •
Researchers from Trend Micro Research, TXOne, ADLINK, Alias Robotics, and ZDI looked into the Data Distribution Service (DDS) standard and its implementations from a security angle. The full findings of this research will be presented in the S4X22 Conf…
Security Vendor News
MITRE Engenuity ATT&CK Tests
by Trend Micro Research, News, Perspectives •
Trend Micro Vision One achieved a protection score of 100% in this year’s evaluation, proving once again that it is an invaluable tool that provides higher confidence detections for security operations teams.
Security Vendor News
Cyclops Blink Sets Sights on Asus Routers
by Feike Hacquebord •
This report discusses the technical capabilities of this Cyclops Blink malware variant that targets ASUS routers and includes a list of more than 150 current and historical command-and-control (C&C) servers of the Cyclops Blink botnet.
Security Vendor News
Will Russian Oil Ban Spur Increased Cyber-Attacks
by Ed Cabrera •
President Biden banned the sale of Russian oil to the United States to deprive the Putin regime of the economic resources needed to wage war. But this may put US companies in the firing line of cyber-attacks from the east.
Security Vendor News
Global Cyberattacks Tied to the Russian Invasion of Ukraine
by Trend Micro Research, News, Perspectives •
Cyber-risk management and security fundamentals are the key to cyber-resilience. 5 best practices to manage your cyber risk.
Security Vendor News
Global Cyberattacks: Managing Risk in Chaotic Times
by Trend Micro Research, News, Perspectives •
As global tension rises, cyber-risk management and security fundamentals are the key to cyber-resilience. 5 best practices are presented to manage your cyber risk.
Security Vendor News
Recent Cyberattacks Target Open-source Web Servers
by Jon Clay •
Malicious actors take advantage of people’s reliance on web servers to perform attacks like remote code execution, access control bypass, denial of service, or even cyberjacking the victim servers to mine cryptocurrencies.
Security Vendor News
Security Automation with Vision One & Palo Alto
by Trend Micro Research, News, Perspectives •
Trend Micro Vision One™ integrates with Palo Alto Networks Cortex™ XSOAR to drive automated response to incidents uncovered by Vision One.
Security Vendor News
Investigating APT36 or Earth Karkaddan’s Attack Chain and Malware Arsenal
by Trend Micro Research, News, Perspectives •
We investigated the most recent activities of APT36, also known as Earth Karkaddan, a politically motivated advanced persistent threat (APT) group, and discuss its use of CapraRAT, an Android RAT with clear similarities in design to the group’s favored…
Security Vendor News
Defending Users’ NAS Devices From Evolving Threats
by Stephen Hilt •
In our latest research, we analyze the threats targeting well-known brands of network-attached storage (NAS) devices.
Security Vendor News
Earth Lusca Employs Sophisticated Infrastructure, Varied Tools and Techniques
by Joseph C Chen •
Our technical brief provides an in-depth look at Earth Lusca’s activities, the tools it employs in attacks, and the infrastructure it uses.
Security Vendor News
Collecting In the Dark: Tropic Trooper Targets Transportation and Government
by Nick Dai •
Our long-term monitoring of the cyberespionage group Earth Centaur (aka Tropic Trooper) shows that the threat actors are equipped with new tools and techniques. The group seems to be targeting transportation companies and government agencies related to…
Security Vendor News
Void Balaur and the Rise of the Cybermercenary Industry
by Trend Micro Research •
One of the most prolific cybermercenaries is Void Balaur, a Russian-speaking threat actor group that has launched attacks against different sectors and industries all over the world.
Security Vendor News
1H’2021 Security Review Shows Active Cloud Attacks
by Jon Clay •
Trend Micro’s midyear report highlights the growing importance of cloud security as attacks increase in frequency and complexity.
Security Vendor News
APT41 Resurfaces as Earth Baku With New Cyberespionage Campaign
by Hara Hiroaki •
Our research paper provides an in-depth analysis of Earth Baku’s new cyberespionage campaign, particularly the group’s use of advanced malware tools and multiple attack vectors.
Security Vendor News
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military
by Daniel Lunghi •
While investigating the Confucius threat actor, we found a recent spear phishing campaign that utilizes Pegasus spyware-related lures to entice victims into opening a malicious document downloading a file stealer.
Security Vendor News
Homeland Security Releases New Cybersecurity Rules
by Trend Micro Research, News, Perspectives •
DHS’s second issue requires pipeline operators to implement various cybersecurity measures to protect their operations from cyber attacks. This directive also builds upon the department’s May directive following the Colonial Pipeline attack.
Security Vendor News
StrongPity APT Group Deploys Android Malware for the First Time
by Zhengyu Dong •
We recently conducted an investigation into a malicious Android malware sample, which we believe can be attributed to the StrongPity APT group, that was posted on the Syrian e-Gov website. To the best of our knowledge, this is the first time that the g…
Security Vendor News
Prevent Cyber Risk as a Managed Service Provider (MSP)
by Trend Micro Research, News, Perspectives •
MSPs – Say no to the next Ransomware! Protect your Business 24×7 with Trend Micro’s security analysts
Security Vendor News
TeamTNT Campaigns Emphasize Importance of Addressing Cloud Security Gaps
by Trend Micro Research •
Having covered TeamTNT in several of our blog entries over the past couple of years, we embarked on a research that encompasses the malicious actor group’s campaigns, tools, and techniques in 2020 and early 2021.
Security Vendor News
BIOPASS RAT: New Malware Sniffs Victims via Live Streaming
by Joseph C Chen •
We discovered a new malware that targets online gambling companies in China via a watering hole attack, in which visitors are tricked into downloading a malware loader disguised as a legitimate installer for well-known apps such as Adobe Flash Player o…
Security Vendor News
Security Resources Now on AWS CloudFormation Templates
by Trend Micro Research, News, Perspectives •
Trend Micro is helping customers natively deploy Infrastructure as Code (IaC) resources for security the same way as cloud native infrastructure in collaboration with AWS CloudFormation.