Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 1 to 10
CVE-2019-16928: Exploiting An Exim Vulnerability Via EHLO Strings
10th Oct 2019 [5 days ago] from TrendMicro
In September, security researchers discovered the existence of CVE-2019-16928, a vulnerability involving the mail transfer agent Exim. Exim accounts for over 50% of publicly reachable mail servers on the internet. What makes the bug particularly...
FIN6 Compromised E-commerce Platform Via Magecart To Inject Credit Card Skimmers Into Thousands Of Online Shops
9th Oct 2019 [6 days ago] from TrendMicro
We discovered that the online credit card skimming attack known as Magecart or E-Skimming was actively operating on 3,126 online shops. The post FIN6 Compromised E-commerce Platform via Magecart to Inject Credit Card Skimmers Into Thousands...
Short October Patch Tuesday Includes Remote Desktop Client, Browser, And Authentication Patches
8th Oct 2019 [6 days ago] from TrendMicro
October’s Patch Tuesday is relatively modest, with Microsoft releasing a total of 59 patches. However, this shorter list still warrants attention. Nine of the 59 were still identified as Critical, while the remaining 50 were labeled Important....
New Fileless Botnet Novter Distributed By KovCoreG Malvertising Campaign
1st Oct 2019 [14 days ago] from TrendMicro
We found a new modular fileless botnet malware, which we named “Novter,” (also reported and known as “Nodersok” and “Divergent”) that the KovCoreG campaign has been distributing since March. KovCoreG, active since 2011, is a...
Gambling Apps Sneak Into Top 100: How Hundreds Of Fake Apps Spread On IOS App Store And Google Play
26th Sep 2019 [19 days ago] from TrendMicro
We found hundreds of the fake apps on iOS App Store and Google Play, with descriptions that are inconsistent with their content. While the apps’ descriptions varied, they share the same suspicious behavior: They could transform into gambling...
Mac Malware That Spoofs Trading App Steals User Information, Uploads It To Website
20th Sep 2019 [25 days ago] from TrendMicro
We recently found and analyzed a malicious malware variant that disguised itself as a legitimate Mac-based trading app called Stockfolio. We found two variants of the malware family. The first one contains a pair of shell scripts and connects...
Fileless Cryptocurrency-Miner GhostMiner Weaponizes WMI Objects, Kills Other Cryptocurrency-Mining Payloads
19th Sep 2019 [26 days ago] from TrendMicro
By Carl Maverick Pascual (Threats Analyst) Cybercriminals continue to use cryptocurrency-mining malware to abuse computing resources for profit. As early as 2017, we have also observed how they have applied fileless techniques to make detection...
Magecart Skimming Attack Targets Mobile Users Of Hotel Chain Booking Websites
18th Sep 2019 [27 days ago] from TrendMicro
We discovered a series of incidents where the credit card skimming attack Magecart was used to hit the booking websites of chain-brand hotels — the second time we’ve seen a Magecart threat actor directly hit ecommerce service providers...
When PSD2 Opens More Doors: The Risks Of Open Banking
17th Sep 2019 [28 days ago] from TrendMicro
We looked into the security implications of the changing banking paradigm with PSD2 in place. Our research highlights the current and new risks that the financial industry will have to defend against, and predict how cybercriminals will...
Skidmap Linux Malware Uses Rootkit Capabilities To Hide Cryptocurrency-Mining Payload
16th Sep 2019 [29 days ago] from TrendMicro
Skidmap, a Linux malware that we recently stumbled upon, demonstrates the increasing complexity of recent cryptocurrency-mining threats. This malware is notable because of the way it loads malicious kernel modules to keep its cryptocurrency...
1 2 3 4 5 6 7 8 9 10 Older »