Research, News, and Perspectives

Ransomware

This Week in Security News - January 28th, 2022

Welcome to our weekly roundup, where we share what you need to know about cybersecurity news and events that happened over the past few days. This week, read the third installment of Trend Micro’s Codex series. Also, read about the White House’s latest zero-trust approach to its cybersecurity strategy.

Expert Perspective Jan 28, 2022

ICS OT

Defending the Supply Chain: Why the DDS Protocol is Critical in Industrial and Software Systems

In 2021, a team of researchers from Trend Micro Research, TXOne, ADLINK, Alias Robotics, and ZDI looked into the Data Distribution Service (DDS) standard and its implementations from a security angle. The full findings of this research will be presented in the S4X22 Conference in April 2022.

Research Jan 27, 2022

Mobile

TianySpy Malware Uses Smishing Disguised as Message From Telco

Trend Micro confirmed a new mobile malware infection chain targeting both Android and iPhone devices. The malware might have been designed to steal credentials associated with membership websites of major Japanese telecommunication services.

Research Jan 25, 2022

Ransomware

Analysis and Impact of LockBit Ransomware’s First Linux and VMware ESXi Variant

LockBit ransomware's operators announced the release of its first Linux and ESXi variant in October. With samples also spotted in the wild, we discuss the impact and analysis of this variant.

Research Jan 24, 2022

APT & Targeted Attacks

Investigating APT36 or Earth Karkaddan’s Attack Chain and Malware Arsenal

We investigated the most recent activities of APT36, also known as Earth Karkaddan, a politically motivated advanced persistent threat (APT) group, and discuss its use of CapraRAT, an Android RAT with clear similarities in design to the group’s favored Windows malware, Crimson RAT.

Jan 24, 2022

Cyber Crime

This Week in Security News - January 21, 2022

 This week, read about various cybersecurity threats that affect industrial control and the Cybersecurity and Infrastructure Security Agency (CISA)’s latest cyberattack warnings.

Expert Perspective Jan 21, 2022

Malware

Emotet Spam Abuses Unconventional IP Address Formats to Spread Malware

We found waves of Emotet spam campaigns using unconventional IP addresses to evade detection.

Jan 21, 2022

Cyber Threats

Codex Exposed: Task Automation and Response Consistency

Being able to automate tasks or programmatically execute them unsupervised is an essential part of both regular and malicious computer usage, so we wondered if a tool like Codex was reliable enough to be scripted and left to run unsupervised, generating the required code.

Research Jan 21, 2022

IoT

Defending Users’ NAS Devices From Evolving Threats

In our latest research, we analyze the threats targeting well-known brands of network-attached storage (NAS) devices.

Research Jan 20, 2022

Ransomware

Cybersecurity for Industrial Control Systems: Part 2

To cap off the series, we’ll discuss malware detection and distribution in various countries. Our team also rounds up several insights to help strengthen ICS cybersecurity and mitigate malware attacks.

Research Jan 20, 2022

Project 2030

Research, News, and Perspectives

Pushing Forward: Key Takeaways From Trend Micro’s Security Predictions for 2022

This Week in Security News - January 28th, 2022

Defending the Supply Chain: Why the DDS Protocol is Critical in Industrial and Software Systems

TianySpy Malware Uses Smishing Disguised as Message From Telco

Analysis and Impact of LockBit Ransomware’s First Linux and VMware ESXi Variant

Investigating APT36 or Earth Karkaddan’s Attack Chain and Malware Arsenal

This Week in Security News - January 21, 2022

Emotet Spam Abuses Unconventional IP Address Formats to Spread Malware

Codex Exposed: Task Automation and Response Consistency

Defending Users’ NAS Devices From Evolving Threats

Cybersecurity for Industrial Control Systems: Part 2

Project 2030

Research, News, and Perspectives

Trending Topics