Security Automation with Vision One & Palo Alto
Trend Micro Vision One™ integrates with Palo Alto Networks Cortex™ XSOAR to drive automated response to incidents uncovered by Vision One. Read More HERE…
Trend Micro Research : APT&Targeted Attacks
Investigating APT36 or Earth Karkaddan’s Attack Chain and Malware Arsenal
We investigated the most recent activities of APT36, also known as Earth Karkaddan, a politically motivated advanced persistent threat (APT) group, and discuss its use of CapraRAT, an Android RAT with clear similarities in design to the group’s favored Windows malware, Crimson RAT. Read More HERE…
Defending Users’ NAS Devices From Evolving Threats
In our latest research, we analyze the threats targeting well-known brands of network-attached storage (NAS) devices. Read More HERE…
Earth Lusca Employs Sophisticated Infrastructure, Varied Tools and Techniques
Our technical brief provides an in-depth look at Earth Lusca’s activities, the tools it employs in attacks, and the infrastructure it uses. Read More HERE…
Collecting In the Dark: Tropic Trooper Targets Transportation and Government
Our long-term monitoring of the cyberespionage group Earth Centaur (aka Tropic Trooper) shows that the threat actors are equipped with new tools and techniques. The group seems to be targeting transportation companies and government agencies related to transportation. Read More HERE…
Void Balaur and the Rise of the Cybermercenary Industry
One of the most prolific cybermercenaries is Void Balaur, a Russian-speaking threat actor group that has launched attacks against different sectors and industries all over the world. Read More HERE…
1H’2021 Security Review Shows Active Cloud Attacks VP, Threat Intelligence
Trend Micro’s midyear report highlights the growing importance of cloud security as attacks increase in frequency and complexity. Read More HERE…
APT41 Resurfaces as Earth Baku With New Cyberespionage Campaign Customer Technology Specialist Threat Researcher
Our research paper provides an in-depth analysis of Earth Baku’s new cyberespionage campaign, particularly the group’s use of advanced malware tools and multiple attack vectors. Read More HERE…
Confucius Uses Pegasus Spyware-related Lures to Target Pakistani Military Threat Researcher
While investigating the Confucius threat actor, we found a recent spear phishing campaign that utilizes Pegasus spyware-related lures to entice victims into opening a malicious document downloading a file stealer. Read More HERE…
Homeland Security Releases New Cybersecurity Rules
DHS’s second issue requires pipeline operators to implement various cybersecurity measures to protect their operations from cyber attacks. This directive also builds upon the department’s May directive following the Colonial Pipeline attack. Read More HERE…