Research, News, and Perspectives

APT & Targeted Attacks

Earth Lusca Employs Sophisticated Infrastructure, Varied Tools and Techniques

Our technical brief provides an in-depth look at Earth Lusca’s activities, the tools it employs in attacks, and the infrastructure it uses.

Research Jan 17, 2022

Save to Folio

Research Jan 17, 2022

Save to Folio

Ransomware

Cybersecurity for Industrial Control Systems: Part 1

In this two-part series, we look into various cybersecurity threats that affected industrial control systems endpoints. We also discuss several insights and recommendations to mitigate such threats.

Research Jan 15, 2022

Save to Folio

Research Jan 15, 2022

Save to Folio

Malware

This Week in Security News - January 14, 2022

This week, read about how crucial it is for security teams to adopt an integrated approach to threat detection, such as remote control, and Congress’s plan to update the Federal Information Security Management Act (FISMA) for the first time in eight years.

Expert Perspective Jan 14, 2022

Save to Folio

Expert Perspective Jan 14, 2022

Save to Folio

Exploits & Vulnerabilities

Analyzing an Old Bug and Discovering CVE-2021-30995

A vulnerability found in 2021 has been patched and re-patched in the months since it was reported. We analyze the bug and outline the process that led to the discovery of CVE-2021-30995.

Research Jan 14, 2022

Save to Folio

Research Jan 14, 2022

Save to Folio

Codex Exposed: How Low Is Too Low When We Generate Code?

In a series of blog posts, we explore different aspects of Codex and assess its capabilities with a focus on the security aspects that affect not only regular developers but also malicious users. This is the second part of the series.

Research Jan 14, 2022

Save to Folio

Research Jan 14, 2022

Save to Folio

Exploits & Vulnerabilities

LoRaWAN's Protocol Stacks: The Forgotten Targets at Risk

This report is the fourth part of our LoRaWAN security series, and highlights an attack vector that, so far, has not attracted much attention: the LoRaWAN stack. The stack is the root of LoRaWAN implementation and security. We hope to help users secure it and make LoRaWAN communication resistant to critical bugs.

Research Jan 11, 2022

Save to Folio

Research Jan 11, 2022

Save to Folio

Cyber Threats

Uncovering and Defending Systems Against Attacks With Layers of Remote Control

The Trend Micro™ Managed XDR team addressed a stealthy multilayered attack that progressed from an exploited endpoint vulnerability to the use of legitimate remote access tools including Remote Desktop Protocol (RDP) as its final means of intrusion.

Research Jan 10, 2022

Save to Folio

Research Jan 10, 2022

Save to Folio

Exploits & Vulnerabilities

This Week in Security News - January 7, 2022

This week, read about Log4j vulnerabilities in connected cars and charging stations and how iOS malware can fake iPhone shutdowns to snoop on cameras and microphones.

Expert Perspective Jan 07, 2022

Save to Folio

Expert Perspective Jan 07, 2022

Save to Folio

Cloud

Codex Exposed: Exploring the Capabilities and Risks of OpenAI’s Code Generator

The first of a series of blog posts examines the security risks of Codex, a code generator powered by the GPT-3 engine.

Research Jan 07, 2022

Save to Folio

Research Jan 07, 2022

Save to Folio

Exploits & Vulnerabilities

Examining Log4j Vulnerabilities in Connected Cars and Charging Stations

In this entry we look into how Log4j vulnerabilities affect devices or properties embedded in or used for connected cars, specifically chargers, in-vehicle infotainment systems, and digital remotes for opening cars.

Research Dec 23, 2021

Save to Folio

Research Dec 23, 2021

Save to Folio