Cybersecurity Decluttered: A Journey to Consolidation
Technological evolution has brought about a critical imperative in cybersecurity today, where relentless threats demand a purging of outdated defences...
Trend Micro Research : Endpoints
How Red Team Exercises Increases Your Cyber Health
Last year, we shared information on the differences between red team exercises and how organizations may get benefits from each...
Earth Freybug Uses UNAPIMON for Unhooking Critical APIs
First cc.bat for reconnaissance Once the scheduled task is triggered, a previously deployed batch file, %System%cc.bat, is executed in the...
Agenda Ransomware Propagates to vCenters and ESXi via Custom PowerShell Script
Some drivers we have observed being leveraged by the Agenda ransomware is YDark, a publicly available tool designed for kernel...
TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types
Executing domain discovery and persistence commands Aside from malware deployment, we have also seen several attempts to discover network infrastructure...
Earth Krahang Exploits Intergovernmental Trust to Launch Cross-Government Attacks
Government organizations seem to be Earth Krahang’s primary targets. As an example, in the case of one country, we found...
AI Auctions: Collectibles, Taylor Swift, Jordan Bots
AI Auctions: Collectibles, Taylor Swift, Jordan Bots Content has been added to your Folio Go to Folio (0) close Artificial...
Unveiling Earth Kapre aka RedCurl’s Cyberespionage Tactics With Trend Micro MDR, Threat Intelligence
After examining the events around the time the file was created, we discovered that the threat actor executed the following...
Multistage RA World Ransomware Uses Anti-AV Tactics, Exploits GPO
Multistage RA World Ransomware Uses Anti-AV Tactics, Exploits GPO Content has been added to your Folio Go to Folio (0)...
Earth Lusca Uses Geopolitical Lure to Target Taiwan Before Elections
The folder also contained an LNK file and a __MACOS folder with payload, this time timestamped Dec. 22, 2023. Similar...
Exploring Changing SOC Landscapes
The SANS Institute's annual SOC Survey is a pivotal source of information for the cybersecurity community. In its seventh iteration,...
Earth Preta Campaign Uses DOPLUGS to Target Asia
All the files under these folders will be copied to {USB_volume}:Usb Disk: {USB_volume}: {USB_volume}:Kaspersky {USB_volume}:KasperskyUsb Drive {USB_volume}:Usb Drive3.0 {USB_volume}:KasperskyRemovable Disk...
Global Cybersecurity Trends: AI, Geopolitical Risks, and Zero Trust
In the dynamic field of cybersecurity, the evolving trends of 2022, 2023, and the anticipated predictions for 2024 paint a...
CVE-2024-21412: Water Hydra Targets Traders with Microsoft Defender SmartScreen Zero-Day
Once the malware registers its victim, it then initiates a listener for incoming TCP connections, waiting to receive commands from...
What Generative AI Means for Cybersecurity in 2024
(Mis)using generative AI for cybercrime When public versions of generative AI first hit the scene, some experts worried criminals would...
