Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 11 to 20
Malware Classification With ‘Graph Hash,’ Applied To The Orca Cyberespionage Campaign
6th Sep 2019 [16 days ago] from TrendMicro
In malware research, threat hunting and sharing of threat intelligence, such as exchanging indicators of compromise (IoCs) in the form of hashes (e.g., MD5s, SHA256s), are common industry practices and helpful for information security professionals....
Spam Campaign Abuses PHP Functions For Persistence, Uses Compromised Devices For Evasion And Intrusion
5th Sep 2019 [17 days ago] from TrendMicro
We found a spam campaign that uses compromised devices to attack vulnerable web servers. From the devices, attackers use a PHP script to send an email with an embedded link to a scam site to specific email addresses. The use of compromised...
Glupteba Campaign Hits Network Routers And Updates C&C Servers With Data From Bitcoin Transactions
4th Sep 2019 [18 days ago] from TrendMicro
After looking into the recent variant of the Glupteba dropper delivered from a malvertising attack, we found that the dropper downloaded two undocumented components aside from the Glupteba malware—a browser stealer and a router exploiter....
Hiding In Plain Text: Jenkins Plugin Vulnerabilities
30th Aug 2019 [23 days ago] from TrendMicro
By David Fiser (Senior Cyber Threat Researcher) Jenkins is a widely used open-source automation server that allows DevOps developers to build, test, and deploy software efficiently and reliably. In order to make the most out of Jenkins’...
‘Heatstroke’ Campaign Uses Multistage Phishing Attack To Steal PayPal And Credit Card Information
29th Aug 2019 [24 days ago] from TrendMicro
Despite having an apparent lull in the first half of 2019, phishing will remain a staple in a cybercriminal’s arsenal, and theyre not going to stop using it. The latest example is a phishing campaign dubbed Heatstroke, based on a variable...
TA505 At It Again: Variety Is The Spice Of ServHelper And FlawedAmmyy
27th Aug 2019 [26 days ago] from TrendMicro
TA505 continues to wreak as much havoc for maximized profits. Still using ServHelper and FlawedAmmyy, they continue to make small changes: targeting other countries, entities, or the combination of techniques used for deployment with each...
Asruex Backdoor Variant Infects Word Documents And PDFs Through Old MS Office And Adobe Vulnerabilities
22nd Aug 2019 [one month ago] from TrendMicro
Since it first emerged in 2015, Asruex has been known for its backdoor capabilities and connection to the spyware DarkHotel. However, when we encountered Asruex in a PDF file, we found that a variant of the malware can also act as an infector...
Uncovering A MyKings Variant With Bootloader Persistence Via Managed Detection And Response
19th Aug 2019 [one month ago] from TrendMicro
When we first investigated MyKings in 2017, we focused on how the cryptominer-dropping botnet malware used WMI for persistence. Like Mirai, MyKings seems to be constantly undergoing changes to its infection routine. The variant we analyzed...
Adware Posing As 85 Photography And Gaming Apps On Google Play Installed Over 8 Million Times
16th Aug 2019 [one month ago] from TrendMicro
The mobile platform is ubiquitous — enabling users to make online transactions, run their everyday lives, or even use it in the workplace. It’s no surprise that fraudsters and cybercriminals would want to cash in on it. Delivering adware,...
Analysis: New Remcos RAT Arrives Via Phishing Email
15th Aug 2019 [one month ago] from TrendMicro
In July, we came across a phishing email purporting to be a new order notification, which contains a malicious attachment that leads to the remote access tool Remcos RAT (detected by Trend Micro as BKDR_SOCMER.SM). This attack delivers...
« Newer 1 2 3 4 5 6 7 8 9 10 Older »