Новости компании

Windows® Mac® AndroidTM iOS new Power Up

Исследования, новости и перспективы

Author: Richard Y Lin (Researcher), Salim S.I. (Senior Staff Researcher)

Vulnerabilities in Cellular Packet Cores Part IV: Authentication

Our research reveals two significant vulnerabilities in Microsoft Azure Private 5G Core (AP5GC). The first vulnerability (CVE-2024-20685) allows a crafted signaling message to crash the control plane, leading to potential service outages. The second (ZDI-CAN-23960) disconnects and replaces attached base stations, disrupting network operations. While these issues are implementation-specific, their exploitation is made possible by a systemic weakness: the lack of mandatory authentication procedures between base stations and packet-cores.

Sep 18, 2024

Author: Hitomi Kimura (Incident Response Analyst), Maria Emreen Viray (Threats Analyst)

Protecting Against RCE Attacks Abusing WhatsUp Gold Vulnerabilities

In this blog entry, we provide an analysis of the recent remote code execution attacks related to Progress Software’s WhatsUp Gold that possibly abused the vulnerabilities CVE-2024-6670 and CVE-2024-6671.

Sep 12, 2024

Author: Lenart Bermejo (Threats Analyst), Sunny Lu (Threats Analyst), Ted Lee (Threat Researcher)

Earth Preta Evolves its Attacks with New Malware and Strategies

In this blog entry, we discuss our analysis of Earth Preta’s enhancements in their attacks by introducing new tools, malware variants and strategies to their worm-based attacks and their time-sensitive spear-phishing campaign.

Sep 09, 2024

Центр ресурсов DevOps

Securing Application Staging & Production Environments

Is your staging environment secure? Explore the importance of assessing its security. Then, learn techniques and best practices to keep it, your other environments, and your company’s data safe from unauthorized access and data breaches.

Jan 09, 2024

Which DevOps Skills are the Hardest to Learn?

DevOps professionals face expansive challenges, from learning complex technologies to developing and honing interpersonal skills. Read on to discover some of the most difficult skills the role demands.

Nov 22, 2023

Top 10 DevOps Blunders and How to Sidestep Them

Integrating the necessary DevOps practices, tools, and cultures in an organization is difficult, even for experts. Learn how to recognize these challenges and transform them into valuable lessons when navigating the world of DevOps.

Nov 09, 2023

Центр ресурсов CISO

Worldwide 2023 Email Phishing Statistics and Examples

Explore the need for going beyond built-in Microsoft 365 and Google Workspace™ security based on email threats detected in 2023.

Jun 20, 2024

Guide to Better Extended Threat Detection and Response (XDR)

Discover how XDR can enhance threat detection and response to improve a SecOps team’s efficiency and outcomes.

Jun 03, 2024

Author: David Chow (Chief Technology Strategy Officer)

A Necessary Digital Odyssey of RPA and AI/ML at HUD

Explore two RPA and AI/ML use cases at HUD during the operational challenges of the longest US Government shutdown, a rigid legacy IT environment, and complex federal regulations.

Mar 13, 2024

Контакты для СМИ

Выбрать свой регион:

  • США
  • AMEA
  • Европа
  • Латинская Америка
  • Япония
  • Тайвань
Катери Дэниелс
США
media_relations@trendmicro.com
Лизиан Ленц
AMEA
lisiane_lenz@trendmicro.com
Фунда Чизгенакад
Европа
funda_cizgenakad@trendmicro.co.uk
Лорена Родригес
Латинская Америка
lorena_rodriguez@trendmicro.com
Каори Лизуми
Япония
pressweb@trendmicro.co.jp
Энджела Чиан
Тайвань
angela_chiang@trend.com.tw

Познакомьтесь с Trend Micro

История, люди и ценности компании.

  Информация в СМИ

Будьте в курсе последних событий
Получайте новости с помощью RSS.

Свяжитесь с нами