Research, News, and Perspectives

Cyber Threats

Smart Car Makers VW & Nissan to Build Smart Factories

The car-making giants have taken big leaps to ensure they address the needs and trends brought by the rapid growth of technologies in the automotive industry.

What To Expect in a Ransomware Negotiation

We wanted to get a better understanding of what victims go through during the aftermath and recovery process of a ransomware attack to help others in case they find themselves in a similar situation. To do this, we analyzed victim support chats for five ransomware families.

Research Oct 26, 2021

Cyber Crime

This Week in Security News – October 22, 2021

In this week in security news, learn about a new backdoor from PurpleFox that utilizes WebSockets for more secure communication the link between the Sinclair ransomware attack and the cybercrime group Evil Corp.

Expert Perspective Oct 22, 2021

Exploits & Vulnerabilities

India Releases Cybersecurity Guidelines for Power Sector

A first in the sector, the latest scheme aims to enhance cybersecurity readiness and the overall efficiency of the country’s distribution companies.

Forced Entry: A Security Test for Automatic Garage Doors

In this blog entry we revisit threats to automatic garage doors by using SDR to test two attack scenarios. We demonstrate a rolling code attack and one that involves a hidden remote feature.

Research Oct 21, 2021

Exploits & Vulnerabilities

CISA Releases Automotive Cybersecurity Guide

The guide helps Transportation System Sector partners understand the cyber-physical risks related to AVs and discusses mitigation strategies they can implement.

PurpleFox Adds New Backdoor That Uses WebSockets

In September 2021, the Trend Micro Managed XDR (MDR) team looked into suspicious activity related to a PurpleFox operator. Our findings led us to investigate an updated PurpleFox arsenal, which included an added vulnerability (CVE-2021-1732) and optimized rootkit capabilities leveraged in their attacks.

Research Oct 19, 2021

Cyber Threats

Tracking CVE-2021-26084 and Other Server-Based Vulnerability Exploits via Trend Micro Cloud One and Trend Micro Vision One

We look into campaigns that exploit the following server vulnerabilities: CVE-2021-26084, CVE-2020-14882, CVE-2020-14750, and CVE-2020-14883.

Research Oct 18, 2021

Cyber Threats

This Week in Security News – October 15, 2021

Actors target Huawei Cloud using upgraded Linux malware, 7-Eleven breached customer privacy by collecting facial imagery without consent and more.

Expert Perspective Oct 15, 2021

Exploits & Vulnerabilities

Security Risks with Private 5G in Manufacturing Companies Part. 2

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own telecom infrastructures. However, the "democratization of communications" entails its own risks that have not yet been made clear. To identify these risks, Trend Micro performed tests using an environment modeled after a steelworks with 5G equipment.

Research Oct 15, 2021

Research, News, and Perspectives

Trending Topics