Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 1 to 10
SettingContent-ms Can Be Abused To Drop Complex DeepLink And Icon-based Payload
19th Oct 2018 [3 days ago] from TrendMicro
Microsoft’s SettingContent-ms has become a recent topic of interest. In July, we saw one spam campaign use malicious SettingContent-ms files embedded in a PDF to drop the remote access Trojan FlawedAmmyy, a RAT also used by the Necurs...
CVE-2018-3211: Java Usage Tracker Local Elevation Of Privilege On Windows
17th Oct 2018 [5 days ago] from TrendMicro
We found design flaw/weakness in Java Usage Tracker that can enable hackers to create arbitrary files, inject attacker-specified parameters, and elevate local privileges. In turn, these can be chained and used to escalate privileges in...
October Patch Tuesday: Microsoft Repairs JET Database Engine Bug, Win32K EoP Zero-Day
9th Oct 2018 [12 days ago] from TrendMicro
This month’s Patch Tuesday fixes a JET Database Engine Vulnerability (CVE-2018-8423) that Trend Micro’s Zero Day Initiative (ZDI) disclosed last September together with a proof of concept code. The post October Patch Tuesday: Microsoft...
Phishing Campaign Uses Hijacked Emails To Deliver URSNIF By Replying To Ongoing Threads
9th Oct 2018 [13 days ago] from TrendMicro
A spam campaign we observed in September indicates attackers are angling towards a more sophisticated form of phishing. The campaign uses hijacked email accounts to deliver URSNIF as part of or as a response to an existing email thread. The...
New CVE-2018-8373 Exploit Spotted In The Wild
25th Sep 2018 [27 days ago] from TrendMicro
By Elliot Cao On September 18, 2018, more than a month after we published a blog revealing the details of a use-after-free (UAF) vulnerability CVE-2018-8373 that affects the VBScript engine in newer Windows versions, we spotted another...
Virobot Ransomware With Botnet Capability Breaks Through
21st Sep 2018 [one month ago] from TrendMicro
We have recently observed the Virobot ransomware (detected by Trend Micro as RANSOM_VIBOROT.THIAHAH) which has botnet capabilities, affecting users in the United States. The post Virobot Ransomware with Botnet Capability Breaks Through...
September Patch Tuesday: Windows Fixes ALPC Elevation Of Privilege, Remote Code Execution Vulnerabilities
11th Sep 2018 [one month ago] from TrendMicro
September’s Patch Tuesday provides a security patch for CVE-2018-8440, an elevation of privilege vulnerability that occurs when Windows incorrectly handles calls to the Advanced Local Procedure Call (ALPC) interface. This bug allows threat...
A Closer Look At The Locky Poser, PyLocky Ransomware
10th Sep 2018 [one month ago] from TrendMicro
While ransomware has noticeably plateaued in today’s threat landscape, it’s still a cybercriminal staple. In fact, it saw a slight increase in activity in the first half of 2018, keeping pace by being fine-tuned to evade security solutions,...
Stolen Data From Chinese Hotel Chain And Other Illicit Products Sold In Deep Web Forum
7th Sep 2018 [2 months ago] from TrendMicro
We uncovered personally identifiable information (PII) stolen from a China-based hotel chain being sold on a deep web forum we were monitoring. Further analysis revealed that the stolen data was not only the PII of Chinese customers, but...
The Urpage Connection To Bahamut, Confucius And Patchwork
29th Aug 2018 [2 months ago] from TrendMicro
In the process of monitoring changes in the threat landscape, we get a clearer insight into the way threat actors work behind the schemes. In this case we dig deeper into the possible connection between cyberattacks by focusing on the similarities...
1 2 3 4 5 6 7 8 9 10 Older »