Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 41 to 50
LokiBot Gains New Persistence Mechanism, Uses Steganography To Hide Its Tracks
6th Aug 2019 [4 months ago] from TrendMicro
First advertised as an information stealer and keylogger when it first appeared in underground forums, LokiBot has added various capabilities over the years. Recent activity has seen the malware family abusing Windows Installer for its...
Latest Trickbot Campaign Delivered Via Highly Obfuscated JS File
5th Aug 2019 [4 months ago] from TrendMicro
We have been tracking Trickbot banking trojan activity and recently discovered a variant of the malware (detected by Trend Micro as TrojanSpy.Win32.TRICKBOT.TIGOCDC) from distributed spam emails that contain a Microsoft Word document with...
Keeping A Hidden Identity: Mirai C&Cs In Tor Network
31st Jul 2019 [4 months ago] from TrendMicro
We found new samples of Mirai targeting IP cameras and DVRs with exposed ports and default credentials. Like its predecessors, it allows attackers remote access and the use of infected devices to form a botnet for DDoS attacks. However,...
Multistage Attack Delivers BillGates/Setag Backdoor, Can Turn Elasticsearch Databases Into DDoS Botnet ‘Zombies’
23rd Jul 2019 [5 months ago] from TrendMicro
Elasticsearch is no stranger to cybercriminal abuse given its popularity and use to organizations. In fact, this year’s first quarter saw a surge of attacks — whether by exploiting vulnerabilities or taking advantage of security gaps...
Old Tools For New Money: URL Spreading Shellbot And XMRig Using 17-year Old XHide
19th Jul 2019 [5 months ago] from TrendMicro
We found a threat that scans for open ports and brute forces systems with weak credentials to drop a Monero cryptocurrency miner. While the installation and mining process is hidden by old evasion tool XHide Process Faker, the malware can...
Spam Campaign Targets Colombian Entities With Custom-made ‘Proyecto RAT,’ Uses Email Service YOPmail For C&C
18th Jul 2019 [5 months ago] from TrendMicro
We observed a recent campaign that primarily targets financial institutions and governmental organizations in the South American region, particularly in Colombia. This blog post covers the activities we observed, the remote access tools...
Jenkins Admins: Relying On Default Settings Could Put Master At Risk Of Remote Code Execution Attacks
17th Jul 2019 [5 months ago] from TrendMicro
By David Fiser Jenkins is a popular open-source automation server for software development teams. Used for managing the development side in DevOps, the main purpose of Jenkins is to perform tasks, called jobs, such that software project...
SLUB Gets Rid Of GitHub, Intensifies Slack Use
16th Jul 2019 [5 months ago] from TrendMicro
by Cedric Pernet, Elliot Cao, Jaromir Horejsi, Joseph C. Chen, William Gamazo Sanchez Four months ago, we exposed an attack that leveraged a previously unknown malware that Trend Micro named SLUB. The past iteration of SLUB spread from...
IOS URL Scheme Susceptible To Hijacking
12th Jul 2019 [5 months ago] from TrendMicro
Abuse of the iOS URL Scheme can potentially result in the loss of privacy, bill fraud, exposure to pop-up ads, and more. The post iOS URL Scheme Susceptible to Hijacking appeared first on .
New Miori Variant Uses Unique Protocol To Communicate With C&C
10th Jul 2019 [5 months ago] from TrendMicro
Miori has recently reappeared bearing a notable difference in the way it communicates with its CC server. This Miori variant departs from the usual binary-based protocol and uses a text-based protocol to communicate with its CC. The post...
« Newer 1 2 3 4 5 6 7 8 9 10 Older »