Home | Latest News | Popular News | Our Network | About | Contact
Security News from 'TrendMicro' | www.SecurityPhresh.com
Security News from 'TrendMicro'
Showing 'Security News from 'TrendMicro'' from 51 to 60
MuddyWater Resurfaces, Uses Multi-Stage Backdoor POWERSTATS V3 And New Post-Exploitation Tools
10th Jun 2019 [3 months ago] from TrendMicro
We found new campaigns that appear to wear the badge of MuddyWater. Analysis of these campaigns revealed the use of new tools and payloads, which indicates that the well-known threat actor group is continuously developing their schemes....
CVE-2019-2725 Exploited And Certificate Files Used For Obfuscation To Deliver Monero Miner
10th Jun 2019 [3 months ago] from TrendMicro
We found cryptocurrency-mining activity that involves the exploitation of the Oracle WebLogic server vulnerability CVE-2019-2725 with the interesting behavior of using certificate files as an obfuscation tactic. The post CVE-2019-2725 Exploited...
Monero-Mining Malware PCASTLE Zeroes Back In On China, Now Uses Multilayered Fileless Arrival Techniques
5th Jun 2019 [4 months ago] from TrendMicro
Abusing PowerShell to deliver malware isn’t new; its actually a prevalent technique that many fileless threats use. We regularly encounter these kinds of threats, and Trend Micro behavior monitoring technology proactively detects and...
BlackSquid Slithers Into Servers And Drives With 8 Notorious Exploits To Drop XMRig Miner
3rd Jun 2019 [4 months ago] from TrendMicro
We found a new wormable malware weve named BlackSquid targeting web servers, network and removable drives using evasion, anti-virtualization, anti-debugging, and anti-sandboxing techniques to drop a Monero miner. The post BlackSquid Slithers...
Infected Cryptocurrency-Mining Containers Target Docker Hosts With Exposed APIs, Use Shodan To Find Additional Victims
30th May 2019 [4 months ago] from TrendMicro
We discovered a Docker Hub repository that has been sending infected cryptocurrency-mining containers to hubs with publicly exposed APIs. Some of the images within the repository contained a Shodan script that identified potential targets...
CVE-2019-0725: An Analysis Of Its Exploitability
29th May 2019 [4 months ago] from TrendMicro
May’s Patch Tuesday saw what is likely to be one of the most prominent vulnerabilities this year with the “wormable” Windows Terminal Services vulnerability (CVE-2019-0708). However, there’s another remote code execution (RCE) vulnerability...
CVE-2019-11815: A Cautionary Tale About CVSS Scores
24th May 2019 [4 months ago] from TrendMicro
by John Simpson Vulnerabilities in the Linux kernel are not uncommon. There are roughly 26 million lines of code, with 3,385,121 lines added and 2,512,040 lines removed in 2018 alone. The sheer complexity of that much code means that vulnerabilities...
New Mirai Variant Uses Multiple Exploits To Target Routers And Other Devices
23rd May 2019 [4 months ago] from TrendMicro
We discovered a new variant of Mirai that uses a total of 13 different exploits, almost all of which have been used in previous Mirai-related attacks. Typical of Mirai variants, it has backdoor and distributed denial-of-service (DDoS)...
Trickbot Watch: Arrival Via Redirection URL In Spam
20th May 2019 [4 months ago] from TrendMicro
We discovered a variant of the Trickbot banking trojan (detected by Trend Micro as TrojanSpy.Win32.TRICKBOT.THDEAI) using a redirection URL in a spam email. The redirection URL is a way to sidestep spam filters that may block Trickbot at...
May’s Patch Tuesday Include Fixes For ‘Wormable’ Flaw In Windows XP, Zero-Day Vulnerability
15th May 2019 [4 months ago] from TrendMicro
Microsoft’s May security release includes updates for 80 vulnerabilities for a number of Microsoft products, including a security update for unsupported operating systems such as Windows XP and Server 2003 not included in the mainstream...
« Newer 1 2 3 4 5 6 7 8 9 10 Older »