Research, News, and Perspectives

Cyber Threats

Using gRPC and HTTP/2 for Cryptominer Deployment: An Unconventional Approach

In this blog entry, we discuss how malicious actors are exploiting Docker remote API servers via gRPC/h2c to deploy the cryptominer SRBMiner to facilitate their mining of XRP on Docker hosts.

Attackers Target Exposed Docker Remote API Servers With perfctl Malware

We observed an unknown threat actor abusing exposed Docker remote API servers to deploy the perfctl malware.

Research Oct 21, 2024

Cloud

Gartner 2024 CNAPP Market Guide Insights for Leaders

As businesses increasingly pivot to cloud-native applications, the landscape of cybersecurity becomes ever more challenging.

Reports Oct 18, 2024

Artificial Intelligence (AI)

5 AI Security Takeaways featuring Forrester

Highlights from the recent discussion between Trend Micro’s David Roth, CRO Enterprise America, and guest speaker Jeff Pollard, VP, Principal Analyst, Forrester about AI hype versus reality and how to secure AI in the workplace.

Security Strategies Oct 17, 2024

Artificial Intelligence (AI)

How to Mitigate the Impact of Rogue AI Risks

This is the latest blog in an ongoing series on Rogue AI. Keep following for more technical guidance, case studies, and insights.

Expert Perspective Oct 17, 2024

Ransomware

Fake LockBit, Real Damage: Ransomware Samples Abuse AWS S3 to Steal Data

This article uncovers a Golang ransomware abusing AWS S3 for data theft, and masking as LockBit to further pressure victims. The discovery of hard-coded AWS credentials in these samples led to AWS account suspensions.

Research Oct 16, 2024

Cyber Threats

Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions

Trend Micro's Threat Hunting Team has observed EDRSilencer, a red team tool that threat actors are attempting to abuse for its ability to block EDR traffic and conceal malicious activity.

Research Oct 15, 2024

APT & Targeted Attacks

Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware

Trend Micro researchers have uncovered a surge of malicious activities involving a threat actor group that we track as Water Makara. This group is targeting enterprises in Brazil, deploying banking malware using obfuscated JavaScript to slip past security defenses.

Research Oct 14, 2024

APT & Targeted Attacks

Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East

Trend Micro's investigation into the recent activity of Earth Simnavaz provides new insights into the APT group’s evolving tactics and the immediate threat it poses to sectors in the Middle East.

Research Oct 11, 2024

Artificial Intelligence (AI)

Harnessing AI for Enhanced Security

A deep-dive into how AI-driven solutions from Trend Micro leveraging the NVIDIA AI Enterprise software platform are elevating security across critical industries

Expert Perspective Oct 08, 2024

Research, News, and Perspectives

A Dive into Earth Baku’s Latest Campaign

Using gRPC and HTTP/2 for Cryptominer Deployment: An Unconventional Approach

Attackers Target Exposed Docker Remote API Servers With perfctl Malware

Gartner 2024 CNAPP Market Guide Insights for Leaders

5 AI Security Takeaways featuring Forrester

How to Mitigate the Impact of Rogue AI Risks

Fake LockBit, Real Damage: Ransomware Samples Abuse AWS S3 to Steal Data

Silent Threat: Red Team Tool EDRSilencer Disrupting Endpoint Security Solutions

Water Makara Uses Obfuscated JavaScript in Spear Phishing Campaign, Targets Brazil With Astaroth Malware

Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East

Harnessing AI for Enhanced Security

Resources

Support

About Trend

Research, News, and Perspectives

Trending Topics

Resources

Support

About Trend

The Americas

Middle East & Africa

Europe

Asia & Pacific