Research, News, and Perspectives

ICS OT

Opening Critical Infrastructure: The Current State of Open RAN Security

The Open Radio Access Network (ORAN) architecture provides standardized interfaces and protocols to previously closed systems. However, our research on ORAN demonstrates the potential threat posed by malicious xApps that are capable of compromising the entire Ran Intelligent Controller (RIC) subsystem.

Research Dec 01, 2023

Cyber Threats

Cloud Security Predictions at AWS re:Invent 2023

Heading to AWS re:Invent 2023? Don’t miss out on our talk with Melinda Marks, ESG Practice Director for Cybersecurity, about cloud detection and response (CDR) and what’s trending in cloud security.

Annual Predictions Nov 27, 2023

Cyber Threats

ParaSiteSnatcher: How Malicious Chrome Extensions Target Brazil

We detail the modular framework of malicious Chrome extensions that consist of various highly obfuscated components that leverage Google Chrome API to monitor, intercept, and exfiltrate victim data.

Research Nov 23, 2023

Cyber Threats

Exploring Weaknesses in Private 5G Networks

Dive into the world of private 5G networks and learn about a critical security vulnerability that could expose IoT devices to attacks from external networks.

Nov 22, 2023

Malware

Attack Signals Possible Return of Genesis Market, Abuses Node.js, and EV Code Signing

The Trend Micro Managed XDR team encountered malicious operations that used techniques similar to the ones used by Genesis Market, a website for facilitating fraud that was taken down in April 2023.

Research Nov 22, 2023

Exploits & Vulnerabilities

CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits

We uncovered the active exploitation of the Apache ActiveMQ vulnerability CVE-2023-46604 to download and infect Linux systems with the Kinsing malware (also known as h2miner) and cryptocurrency miner.

Research Nov 20, 2023

Ransomware

ALPHV/BlackCat Take Extortion Public

Learn more about ALPHV filing a complaint with the Security and Exchange Commission (SEC) against their victim, which appears to be an attempt to influence MeridianLink to pay the ransom sooner than later.

Expert Perspective Nov 17, 2023

Cyber Threats

100 Quarters of Profitability: Insights from a Trender

Learn what 100 straight quarters of profitability means to a Trender who has been here for every one of them.

A Closer Look at ChatGPT's Role in Automated Malware Creation

This blog entry explores the effectiveness of ChatGPT's safety measures, the potential for AI technologies to be misused by criminal actors, and the limitations of current AI models.

Research Nov 14, 2023

Exploits & Vulnerabilities

Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518

We encountered the Cerber ransomware exploiting the Atlassian Confluence vulnerability CVE-2023-22518 in its operations.

Research Nov 10, 2023

Research, News, and Perspectives

CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits

Opening Critical Infrastructure: The Current State of Open RAN Security

Cloud Security Predictions at AWS re:Invent 2023

ParaSiteSnatcher: How Malicious Chrome Extensions Target Brazil

Exploring Weaknesses in Private 5G Networks

Attack Signals Possible Return of Genesis Market, Abuses Node.js, and EV Code Signing

CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits

ALPHV/BlackCat Take Extortion Public

100 Quarters of Profitability: Insights from a Trender

A Closer Look at ChatGPT's Role in Automated Malware Creation

Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518

Resources

Support

About Trend

Research, News, and Perspectives

Trending Topics

Resources

Support

About Trend

The Americas

Middle East & Africa

Europe

Asia & Pacific