TrendMicro – Page 2 – Computer Security Articles

Why a Cloud Security Platform Approach is Critical

April 15, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : cyber threats, trend micro research : exploits & vulnerabilities, trend micro research : security strategies

Credit to Author: Fernando Cardoso| Date: Wed, 03 Apr 2024 00:00:00 +0000

Explore how a cybersecurity platform with attack surface management and runtime protection capabilities can enhance your cloud security posture.

Security TrendMicro

Earth Freybug Uses UNAPIMON for Unhooking Critical APIs

April 15, 2024 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : research

Credit to Author: Christopher So| Date: Tue, 02 Apr 2024 00:00:00 +0000

This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child processes from being monitored via a new malware we’ve discovered and dubbed UNAPIMON.

Security TrendMicro

Agenda Ransomware Propagates to vCenters and ESXi via Custom PowerShell Script

April 15, 2024 admin trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : ransomware, trend micro research : research

Credit to Author: Arianne Dela Cruz| Date: Tue, 26 Mar 2024 00:00:00 +0000

This blog entry discusses the Agenda ransomware group’s use of its latest Rust variant to propagate to VMWare vCenter and ESXi servers.

Security TrendMicro

TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types

March 19, 2024 admin trend micro research : articles, news, reports, trend micro research : cyber threats, trend micro research : endpoints, trend micro research : exploits & vulnerabilities, trend micro research : malware, trend micro research : ransomware, trend micro research : research

Credit to Author: Junestherry Dela Cruz| Date: Tue, 19 Mar 2024 00:00:00 +0000

CVE-2024-27198 and CVE-2024-27199 are vulnerabilities within the TeamCity On-Premises platform that can allow attackers to gain administrative control over affected systems.

Security TrendMicro

NIST Launches Cybersecurity Framework (CSF) 2.0

March 19, 2024 admin trend micro research : articles, news, reports, trend micro research : cloud, trend micro research : compliance & risks, trend micro research : expert perspective

Credit to Author: Shannon Murphy| Date: Wed, 20 Mar 2024 00:00:00 +0000

On February 26, 2024, the National Institute of Standards and Technology (NIST) released the official 2.0 version of the Cyber Security Framework (CSF).

Security TrendMicro

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

March 18, 2024 admin trend micro research : articles, news, reports, trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Arun Shaji| Date: Tue, 19 Mar 2024 00:00:00 +0000

Jenkins, a popular open-source automation server, was discovered to be affected by a file read vulnerability, CVE-2024-23897.

Security TrendMicro

Earth Krahang Exploits Intergovernmental Trust to Launch Cross-Government Attacks

March 18, 2024 admin trend micro research : apt & targeted attacks, trend micro research : articles, news, reports, trend micro research : endpoints, trend micro research : research

Credit to Author: Joseph C Chen| Date: Mon, 18 Mar 2024 00:00:00 +0000

Since early 2022, we have been monitoring an APT campaign that targets several government entities worldwide, with a strong focus in Southeast Asia, but also seen targeting Europe, America, and Africa.

Security TrendMicro

CVE-2024-21412: DarkGate Operators Exploit Microsoft Windows SmartScreen Bypass in Zero-Day Campaign

March 13, 2024 admin trend micro research : exploits & vulnerabilities, trend micro research : research

Credit to Author: Peter Girnus| Date: Wed, 13 Mar 2024 00:00:00 +0000

In addition to our Water Hydra APT zero day analysis, the Zero Day Initiative (ZDI) observed a DarkGate campaign which we discovered in mid-January 2024 where DarkGate operators exploited CVE-2024-21412.