Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 21 to 30
Same Old Yet Brand-new: New File Types Emerge In Malware Spam Attachments
29th Oct 2018 [one month ago] from TrendMicro
Cybercriminals make use of old file types in brand-new ways in spam attachments, proving that they are regularly experimenting to evade spam filters. The post Same Old yet Brand-new: New File Types Emerge in Malware Spam Attachments appeared...
Misconfigured Container Abused To Deliver Cryptocurrency-mining Malware
25th Oct 2018 [2 months ago] from TrendMicro
We recently observed cases of abuse of the systems running misconfigured Docker engine with Docker application program interface (API) ports exposed. We also noticed that the malicious activities were focused on scanning for open ports...
Malware Targeting Brazil Uses Legitimate Windows Components WMI And CertUtil As Part Of Its Routine
24th Oct 2018 [2 months ago] from TrendMicro
We recently found a malware that abuses two legitimate Windows files — the command line utility wmic.exe  and certutil.exe, a program that manages certificates for Windows — to download its payload onto the victim’s device. What’s...
SettingContent-ms Can Be Abused To Drop Complex DeepLink And Icon-based Payload
19th Oct 2018 [2 months ago] from TrendMicro
Microsoft’s SettingContent-ms has become a recent topic of interest. In July, we saw one spam campaign use malicious SettingContent-ms files embedded in a PDF to drop the remote access Trojan FlawedAmmyy, a RAT also used by the Necurs...
CVE-2018-3211: Java Usage Tracker Local Elevation Of Privilege On Windows
17th Oct 2018 [2 months ago] from TrendMicro
We found design flaw/weakness in Java Usage Tracker that can enable hackers to create arbitrary files, inject attacker-specified parameters, and elevate local privileges. In turn, these can be chained and used to escalate privileges in...
October Patch Tuesday: Microsoft Repairs JET Database Engine Bug, Win32K EoP Zero-Day
9th Oct 2018 [2 months ago] from TrendMicro
This month’s Patch Tuesday fixes a JET Database Engine Vulnerability (CVE-2018-8423) that Trend Micro’s Zero Day Initiative (ZDI) disclosed last September together with a proof of concept code. The post October Patch Tuesday: Microsoft...
Phishing Campaign Uses Hijacked Emails To Deliver URSNIF By Replying To Ongoing Threads
9th Oct 2018 [2 months ago] from TrendMicro
A spam campaign we observed in September indicates attackers are angling towards a more sophisticated form of phishing. The campaign uses hijacked email accounts to deliver URSNIF as part of or as a response to an existing email thread. The...
New CVE-2018-8373 Exploit Spotted In The Wild
25th Sep 2018 [3 months ago] from TrendMicro
By Elliot Cao On September 18, 2018, more than a month after we published a blog revealing the details of a use-after-free (UAF) vulnerability CVE-2018-8373 that affects the VBScript engine in newer Windows versions, we spotted another...
Virobot Ransomware With Botnet Capability Breaks Through
21st Sep 2018 [3 months ago] from TrendMicro
We have recently observed the Virobot ransomware (detected by Trend Micro as RANSOM_VIBOROT.THIAHAH) which has botnet capabilities, affecting users in the United States. The post Virobot Ransomware with Botnet Capability Breaks Through...
September Patch Tuesday: Windows Fixes ALPC Elevation Of Privilege, Remote Code Execution Vulnerabilities
11th Sep 2018 [3 months ago] from TrendMicro
September’s Patch Tuesday provides a security patch for CVE-2018-8440, an elevation of privilege vulnerability that occurs when Windows incorrectly handles calls to the Advanced Local Procedure Call (ALPC) interface. This bug allows threat...
« Newer 1 2 3 4 5 6 7 8 9 10 Older »