Research, News, and Perspectives

Ransomware

BazarLoader Adds Compromised Installers, ISO to Arrival and Delivery Vectors

We observed BazarLoader adding two new arrival mechanisms to their current roster of malware delivery techniques.

Nov 23, 2021

Save to Folio

Nov 23, 2021

Save to Folio

Compliance & Risks

COP26 Backs Electric Vehicles to Reduce Climate Change

The 26 United Nations Climate Change Conference pushes for countries of parties to adopt more widespread EV use in order to reduce the looming threats of climate change.

Latest News Nov 23, 2021

Save to Folio

Latest News Nov 23, 2021

Save to Folio

This Week in Security News - November 19, 2021

This week, learn about how the QAKBOT Loader malware has evolved its techniques and strategies over time. Also, read about the most recent initiative by the legislation to further cybersecurity protection.

Expert Perspective Nov 19, 2021

Save to Folio

Expert Perspective Nov 19, 2021

Save to Folio

Exploits & Vulnerabilities

Squirrelwaffle Exploits ProxyShell and ProxyLogon to Hijack Email Chains

Squirrelwaffle is known for using the tactic of sending malicious spam as replies to existing email chains. We look into how by investigating its exploit of Microsoft Exchange Server vulnerabilities, ProxyLogon and ProxyShell.

Research Nov 19, 2021

Save to Folio

Research Nov 19, 2021

Save to Folio

Cyber Threats

Analyzing ProxyShell-related Incidents via Trend Micro Managed XDR

In this blog entry, we will take a look at the ProxyShell vulnerabilities that were being exploited in these events, and dive deeper into the notable post-exploitation routines that were used in four separate incidents involving these web shell attacks.

Research Nov 17, 2021

Save to Folio

Research Nov 17, 2021

Save to Folio

Compliance & Risks

Post-pandemic growth starts with understanding risk

The digital transformations that accompanied the pandemic are here to stay. To succeed in the post-pandemic era, organizations must come to a shared understanding about cybersecurity as a critical element of business risk.

Expert Perspective Nov 16, 2021

Save to Folio

Expert Perspective Nov 16, 2021

Save to Folio

Ransomware

Global Operations Lead to Arrests of Alleged Members of GandCrab/REvil and Cl0p Cartels

A total of 13 suspects believed to be members of two prolific cybercrime rings were arrested as a global coalition across five continents involving law enforcement and private partners, including Trend Micro, sought to crack down on big ransomware operators.

Latest News Nov 16, 2021

Save to Folio

Latest News Nov 16, 2021

Save to Folio

Cloud

Groups Target Alibaba ECS Instances for Cryptojacking

We looked at how some malicious groups disable features in Alibaba Cloud ECS instances for illicit mining of Monero.

Nov 15, 2021

Save to Folio

Nov 15, 2021

Save to Folio

Malware

QAKBOT Loader Returns With New Techniques and Tools

QAKBOT operators resumed email spam operations towards the end of September after an almost three-month hiatus. QAKBOT detection has become a precursor to many critical and widespread ransomware attacks. Our report shares some insight into the new techniques and tools this threat is using.

Research Nov 13, 2021

Save to Folio

Research Nov 13, 2021

Save to Folio

Cyber Crime

This Week in Security News - November 12, 2021

This week, learn about the prolific cybermercenaries, Void Balaur, and their recent attacks. Also, read on the 80-country agreement to mobilize safeguards against cyberattacks.

Expert Perspective Nov 12, 2021

Save to Folio

Expert Perspective Nov 12, 2021

Save to Folio