Research, News, and Perspectives

SolidBit Ransomware Enters the RaaS Scene and Takes Aim at Gamers and Social Media Users With New Variant

This blog entry offers a technical analysis of a new SolidBit variant that is posing as different applications to lure gamers and social media users. The SolidBit ransomware group appears to be planning to expand its operations through these fraudulent apps and its recruitment of ransomware-as-a-service affiliates.

Research Aug 02, 2022

Examining New DawDropper Banking Dropper and DaaS on the Dark Web

In this blog post, we discuss the technical details of a new banking dropper that we have dubbed DawDropper, give a brief history of banking trojans released in early 2022 that use malicious droppers, and elaborate on cybercriminal activities related to DaaS in the deep web.

Research Jul 29, 2022

APT & Targeted Attacks

Trend Micro Joins AWS Marketplace Vendor Insights

Streamlining and enhancing security in the cloud with AWS and Trend Micro

Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike

Gootkit has been known to use fileless techniques to drop Cobalt Strike and other malicious payloads. Insights from a recent attack reveal updates in its tactics.

Research Jul 27, 2022

Cloud

Better Together: AWS and Trend Micro

This post relays the latest threat detection tool innovation of AWS - Amazon GuardDuty Malware Protection. This tool works closely with Trend Micro cloud solutions, providing another valuable layer of defense in our fight against a shared adversary.

LockBit Ransomware Group Augments Its Latest Variant, LockBit 3.0, With BlackMatter Capabilities

In June 2022, LockBit revealed version 3.0 of its ransomware. In this blog entry, we discuss the findings from our own technical analysis of this variant and its behaviors, many of which are similar to those of the BlackMatter ransomware.

Alibaba OSS Buckets Compromised to Distribute Malicious Shell Scripts via Steganography

In this blog entry, we discuss a malicious campaign that targets Alibaba Cloud’s OSS buckets with leaked credentials for malware distribution and cryptojacking.

Research Jul 21, 2022

Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data

We discovered the use of two Python penetration-testing tools, Impacket and Responder, that malicious actors used to compromise systems and exfiltrate data. We share our key findings in this report.

Research Jul 20, 2022

Privacy & Risks

Private 5G Network Security Expectations Part 3

How to secure your private 5G networks; The challenge of complex ecosystem in DX.

Research Jul 11, 2022

Privacy & Risks

Data Distribution Service: Mitigating Risks Part 3

In the final chapter of our blog series, we discuss mitigating strategies and recommendations to keep DDS protected from malicious actors.

Research Jul 11, 2022

Explore the Cyber Risk Index (CRI)

Research, News, and Perspectives

New APT Group Earth Berberoka Targets Gambling Websites With Old and New Malware

SolidBit Ransomware Enters the RaaS Scene and Takes Aim at Gamers and Social Media Users With New Variant

Examining New DawDropper Banking Dropper and DaaS on the Dark Web

Trend Micro Joins AWS Marketplace Vendor Insights

Gootkit Loader’s Updated Tactics and Fileless Delivery of Cobalt Strike

Better Together: AWS and Trend Micro

LockBit Ransomware Group Augments Its Latest Variant, LockBit 3.0, With BlackMatter Capabilities

Alibaba OSS Buckets Compromised to Distribute Malicious Shell Scripts via Steganography

Analyzing Penetration-Testing Tools That Threat Actors Use to Breach Systems and Steal Data

Private 5G Network Security Expectations Part 3

Data Distribution Service: Mitigating Risks Part 3

Explore the Cyber Risk Index (CRI)

Research, News, and Perspectives

Trending Topics