Research, News, and Perspectives

Cyber Crime

Cyber Crime: INTERPOL Uses Trend Threat Intelligence

INTERPOL recently conducted operation African Surge to take down malicious infrastructure across the African continent and requested the help of private enterprises. Trend Micro is proud to have been asked to participate, and provided global threat intelligence that was utilized in this operation.

Expert Perspective Nov 25, 2022

Save to Folio

Expert Perspective Nov 25, 2022

Save to Folio

Ransomware

WannaRen Returns as Life Ransomware, Targets India

This blog entry looks at the characteristics of a new WannaRen ransomware variant, which we named Life ransomware after its encryption extension.

Research Nov 23, 2022

Save to Folio

Research Nov 23, 2022

Save to Folio

APT & Targeted Attacks

Earth Preta Spear-Phishing Governments Worldwide

We break down the cyberespionage activities of advanced persistent threat (APT) group Earth Preta, observed in large-scale attack deployments that began in March. We also show the infection routines of the malware families they use to infect multiple sectors worldwide: TONEINS, TONESHELL, and PUBLOAD.

Research Nov 18, 2022

Save to Folio

Research Nov 18, 2022

Save to Folio

Cyber Threats

Global Cyber Risk at Elevated Level

North America Least Prepared for Cyberattacks

Reports Nov 17, 2022

Save to Folio

Reports Nov 17, 2022

Save to Folio

Cyber Crime

Electricity/Energy Cybersecurity: Trends & Survey Response

Based on our survey of over 900 ICS security leaders in the United States, Germany, and Japan, we dig deeper into each industry's challenges and present Trend Micro's recommendations.

Research Nov 16, 2022

Save to Folio

Research Nov 16, 2022

Save to Folio

Malware

Pilfered Keys: Free App Infected by Malware Steals Keychain Data

Open-source applications are a practical way to save money while keeping up with your productivity. However, this can be abused by threat actors to steal your data. Find out how one app was used to gather information of Apple users.

Nov 16, 2022

Save to Folio

Nov 16, 2022

Save to Folio

Exploits & Vulnerabilities

CVE-2019-8561: A Hard-to-Banish PackageKit Framework Vulnerability in macOS

This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used to install software installer packages (PKG files).

Research Nov 11, 2022

Save to Folio

Research Nov 11, 2022

Save to Folio

APT & Targeted Attacks

Hack the Real Box: APT41’s New Subgroup Earth Longzhi

We looked into the campaigns deployed by a new subgroup of advanced persistent threat (APT) group APT41, Earth Longzhi. This entry breaks down the technical details of the campaigns in full as presented at HITCON PEACE 2022 in August.

Nov 09, 2022

Save to Folio

Nov 09, 2022

Save to Folio

Cyber Threats

DeimosC2: What SOC Analysts and Incident Responders Need to Know About This C&C Framework

This report provides defenders and security operations center teams with the technical details they need to know should they encounter the DeimosC2 C&C framework.

Research Nov 08, 2022

Save to Folio

Research Nov 08, 2022

Save to Folio

Phishing

Massive Phishing Campaigns Target India Banks’ Clients

We found five banking malware families targeting customers of seven banks in India to steal personal and credit card information via phishing campaigns.

Nov 07, 2022

Save to Folio

Nov 07, 2022

Save to Folio