Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 41 to 50
Shadowgate Returns To Worldwide Operations With Evolved Greenflash Sundown Exploit Kit
27th Jun 2019 [3 months ago] from TrendMicro
by Joseph C. Chen After almost two years of sporadic restricted activity, the ShadowGate campaign has started delivering cryptocurrency miners with a newly upgraded version of the Greenflash Sundown exploit kit. The campaign has been spotted...
Using Whitelisting To Remediate An RCE Vulnerability (CVE-2019-2729) In Oracle WebLogic
25th Jun 2019 [3 months ago] from TrendMicro
Oracle WebLogic has recently disclosed and patched remote-code-execution (RCE) vulnerabilities in its software, many of which were due to insecure deserialization. Oracle addressed the most recent vulnerability, CVE-2019-2729, in an out-of-band...
CVE-2019-8635: Double Free Vulnerability In Apple MacOS Lets Attackers Escalate System Privileges And Execute Arbitrary Code
21st Jun 2019 [3 months ago] from TrendMicro
We discovered a double free vulnerability (assigned as CVE-2019-8635) in macOS. The vulnerability is caused by a memory corruption flaw in the AMD component. If successfully exploited, an attacker can implement privilege escalation and...
Cryptocurrency Mining Botnet Arrives Through ADB And Spreads Through SSH
20th Jun 2019 [3 months ago] from TrendMicro
We observed a new cryptocurrency mining botnet that arrives via open ADB (Android Debug Bridge) ports and can spread via SSH. This attack takes advantage of the way open ADB ports don’t have authentication by default, similar to the Satori...
Mobile Cyberespionage Campaign ‘Bouncing Golf’ Affects Middle East
18th Jun 2019 [3 months ago] from TrendMicro
We uncovered a cyberespionage campaign targeting Middle Eastern countries. We named this campaign “Bouncing Golf” based on the malware’s code in the package named “golf.” The malware involved, which Trend Micro detects as  AndroidOS_GolfSpy.HRX,...
AESDDoS Botnet Malware Infiltrates Containers Via Exposed Docker APIs
14th Jun 2019 [3 months ago] from TrendMicro
By David Fiser, Jakub Urbanec and Jaromir Horejsi Misconfiguration is not novel. However, cybercriminals still find that it is an effective way to get their hands on organizations’ computing resources to use for malicious purposes and...
Advanced Targeted Attack Tools Found Being Used To Distribute Cryptocurrency Miners
13th Jun 2019 [3 months ago] from TrendMicro
We recently came across evidence of a large-scale cybercrime activity that appears to combine targeted attack tools and regular cybercrime: The attackers distribute typical malware such as cryptocurrency miners and ransomware by making...
Outlaw Hacking Group’s Botnet Observed Spreading Miner, Perl-Based Backdoor
13th Jun 2019 [3 months ago] from TrendMicro
One of our honeypots detected a URL spreading a botnet with a Monero miner bundled with a Perl-based backdoor component. The routine caught our attention as the techniques employed are reminiscent as those used in the Outlaw hacking group’s...
Shifting Tactics: Breaking Down TA505 Group’s Use Of HTML, RATs And Other Techniques In Latest Campaigns
12th Jun 2019 [3 months ago] from TrendMicro
In TA505 groups latest campaign, they started using HTML attachments to deliver malicious .XLS files that lead to downloader and backdoor FlawedAmmyy, mostly to target users in South Korea. We also touch on the latest TA505 developments,...
June’s Patch Tuesday Fixes 88 Security Flaws, Including SandboxEscaper’s Zero Days, HoloLens
12th Jun 2019 [3 months ago] from TrendMicro
Microsoft’s June Patch Tuesday announced the release of 88 vulnerability patches in this month’s security bulletin, as well as four advisories and one servicing stack update. Four of the critical patches included in the release are...
« Newer 1 2 3 4 5 6 7 8 9 10 Older »