Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 1 to 10
LokiBot Impersonates Popular Game Launcher And Drops Compiled C# Code File
14th Feb 2020 [13 days ago] from TrendMicro
Recently, we discovered LokiBot (detected by Trend Micro as Trojan.Win32.LOKI) impersonating a popular game launcher to trick users into executing it on their machines. Further analysis revealed that a sample of this variant employs a quirky,...
An In-Depth Technical Analysis Of CurveBall (CVE-2020-0601)
13th Feb 2020 [14 days ago] from TrendMicro
A code-level root cause analysis of CVE-2020-0601 in the context of how applications are likely to use CryptoAPI to handle certificates — more specifically in the context of applications communicating via Transport Layer Security (TLS). The...
February Patch Tuesday: Fixes For Critical LNK, RDP, Trident Vulnerabilities
11th Feb 2020 [15 days ago] from TrendMicro
The first Patch Tuesday of 2020 in January brought an unusually long list of patches, but February brings an even wider range of fixes that address a total of 99 vulnerabilities — including 12 classified as Critical, with the remaining...
Outlaw Updates Kit To Kill Older Miner Versions, Targets More Systems
10th Feb 2020 [16 days ago] from TrendMicro
We observed an increase in hacking group Outlaws activities in December, with updates on the kits’ capabilities reminiscent of their previous attacks. The post Outlaw Updates Kit to Kill Older Miner Versions, Targets More Systems appeared...
Malicious Optimizer And Utility Android Apps On Google Play Communicate With Trojans That Install Malware, Perform Mobile Ad Fraud
6th Feb 2020 [20 days ago] from TrendMicro
We recently discovered several malicious optimizer, booster, and utility apps (detected by Trend Micro as AndroidOS_BadBooster.HRX) on Google Play that are capable of accessing remote ad configuration servers that can be used for malicious...
Security Analysis Of Devices That Support SCPI And VISA Protocols
28th Jan 2020 [30 days ago] from TrendMicro
Standard Commands for Programmable Instruments (SCPI) is a legacy protocol that most advanced measurement instruments support. However, it is important to note that authentication is not innate in this protocol. The post Security Analysis...
January Patch Tuesday: Update List Includes Fixes For Internet Explorer, Remote Desktop, Cryptographic Bugs
15th Jan 2020 [one month ago] from TrendMicro
2020 starts off with a relatively heavy list of patches for Microsoft users. January is typically a light month for fixes, but Microsoft released patches for 49 vulnerabilities (eight of which are Critical and all the remaining classified...
First Active Attack Exploiting CVE-2019-2215 Found On Google Play, Linked To SideWinder APT Group
6th Jan 2020 [2 months ago] from TrendMicro
We found three malicious apps in the Google Play store that work together to compromise a victim’s device and collect user information. One of these apps, called Camero, exploits CVE-2019-2215, a vulnerability that exists in Binder (the...
Looking Into Attacks And Techniques Used Against WordPress Sites
23rd Dec 2019 [2 months ago] from TrendMicro
This blog post lists different kinds of attacks against WordPress, by way of payload examples we observed in the wild, and how attacks have used hacked admin access and API, Alfa-Shell deployment, and SEO poisoning to take advantage of...
Why Running A Privileged Container In Docker Is A Bad Idea
20th Dec 2019 [2 months ago] from TrendMicro
In this blog post, we will explore how running a privileged yet unsecure container may allow cybercriminals to gain a backdoor in an organization’s system. The post Why Running a Privileged Container in Docker Is a Bad Idea appeared first...
1 2 3 4 5 6 7 8 9 10 Older »