Research, News, and Perspectives

Privacy & Risks

Facebook's Metaverse is Expanding the Attack Surface

Understand the cybersecurity risks in the Metaverse

Latest News Aug 08, 2022

Save to Folio

Latest News Aug 08, 2022

Save to Folio

Cyber Threats

Oil and Gas Cybersecurity: Industry Overview Part 1

With geopolitical tensions running high, oil and gas companies may be more susceptible to cyberattacks.

Aug 08, 2022

Save to Folio

Aug 08, 2022

Save to Folio

SolidBit Ransomware Enters the RaaS Scene and Takes Aim at Gamers and Social Media Users With New Variant

This blog entry offers a technical analysis of a new SolidBit variant that is posing as different applications to lure gamers and social media users. The SolidBit ransomware group appears to be planning to expand its operations through these fraudulent apps and its recruitment of ransomware-as-a-service affiliates.

Research Aug 02, 2022

Save to Folio

Research Aug 02, 2022

Save to Folio

Examining New DawDropper Banking Dropper and DaaS on the Dark Web

In this blog post, we discuss the technical details of a new banking dropper that we have dubbed DawDropper, give a brief history of banking trojans released in early 2022 that use malicious droppers, and elaborate on cybercriminal activities related to DaaS in the deep web.

Research Jul 29, 2022

Save to Folio

Research Jul 29, 2022

Save to Folio

APT & Targeted Attacks

Trend Micro Joins AWS Marketplace Vendor Insights

Streamlining and enhancing security in the cloud with AWS and Trend Micro

Latest News Jul 27, 2022

Save to Folio

Latest News Jul 27, 2022

Save to Folio

Cyber Threats

Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike

Gootkit has been known to use fileless techniques to drop Cobalt Strike and other malicious payloads. Insights from a recent attack reveal updates in its tactics.

Research Jul 27, 2022

Save to Folio

Research Jul 27, 2022

Save to Folio

Cloud

Better Together: AWS and Trend Micro

This post relays the latest threat detection tool innovation of AWS - Amazon GuardDuty Malware Protection. This tool works closely with Trend Micro cloud solutions, providing another valuable layer of defense in our fight against a shared adversary.

Latest News Jul 26, 2022

Save to Folio

Latest News Jul 26, 2022

Save to Folio

LockBit Ransomware Group Augments Its Latest Variant, LockBit 3.0, With BlackMatter Capabilities

In June 2022, LockBit revealed version 3.0 of its ransomware. In this blog entry, we discuss the findings from our own technical analysis of this variant and its behaviors, many of which are similar to those of the BlackMatter ransomware.

Latest News Jul 25, 2022

Save to Folio

Latest News Jul 25, 2022

Save to Folio

Cloud

Alibaba OSS Buckets Compromised to Distribute Malicious Shell Scripts via Steganography

In this blog entry, we discuss a malicious campaign that targets Alibaba Cloud’s OSS buckets with leaked credentials for malware distribution and cryptojacking.

Research Jul 21, 2022

Save to Folio

Research Jul 21, 2022

Save to Folio

Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data

We discovered the use of two Python penetration-testing tools, Impacket and Responder, that malicious actors used to compromise systems and exfiltrate data. We share our key findings in this report.

Research Jul 20, 2022

Save to Folio

Research Jul 20, 2022

Save to Folio