Trend Micro Research : Exploits&Vulnerabilities Archives - Page 2 of 17

Pawn Storm Uses Brute Force and Stealth Against High-Value Targets

Based on our estimates, from approximately April 2022 until November 2023, Pawn Storm attempted to launch NTLMv2 hash relay attacks through different methods, with huge peaks in the number of targets and variations in the government departments that it targeted. Read More HERE…

TrendMicro

CVE-2023-36025 Exploited for Defense Evasion in Phemedrone Stealer Campaign

January 12, 2024 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Research

This blog delves into the Phemedrone Stealer campaign’s exploitation of CVE-2023-36025, the Windows Defender SmartScreen Bypass vulnerability, for its defense evasion and investigates the malware’s payload. Read More HERE…

TrendMicro

Decoding CVE-2023-50164: Unveiling the Apache Struts File Upload Exploit

December 15, 2023 TH Author Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Latest News, Trend Micro Research : Research

In this blog entry, we discuss the technical details of CVE-2023-50164, a critical vulnerability that affects Apache Struts 2 and enables unauthorized path traversal. Read More HERE…

TrendMicro

Opening Critical Infrastructure: The Current State of Open RAN Security

December 1, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Cyber Threats, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : ICS OT, Trend Micro Research : Research

The Open Radio Access Network (ORAN) architecture provides standardized interfaces and protocols to previously closed systems. However, our research on ORAN demonstrates the potential threat posed by malicious xApps that are capable of compromising the entire Ran Intelligent Controller (RIC) subsystem. Read More HERE…

TrendMicro

CVE-2023-46604 (Apache ActiveMQ) Exploited to Infect Systems With Cryptominers and Rootkits

November 20, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Network, Trend Micro Research : Research

We uncovered the active exploitation of the Apache ActiveMQ vulnerability CVE-2023-46604 to download and infect Linux systems with the Kinsing malware (also known as h2miner) and cryptocurrency miner. Read More HERE…

TrendMicro

Cerber Ransomware Exploits Atlassian Confluence Vulnerability CVE-2023-22518

November 10, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Ransomware, Trend Micro Research : Research

We encountered the Cerber ransomware exploiting the Atlassian Confluence vulnerability CVE-2023-22518 in its operations. Read More HERE…

TrendMicro

Beware: Lumma Stealer Distributed via Discord CDN

October 16, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Malware, Trend Micro Research : Research

This blog discusses how threat actors abuse Discord’s content delivery network (CDN) to host and spread Lumma Stealer, and talks about added capabilities to the information stealing malware. Read More HERE…

TrendMicro

Exposing Infection Techniques Across Supply Chains and Codebases

October 5, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Malware, Trend Micro Research : Mobile, Trend Micro Research : Network, Trend Micro Research : Research

This entry delves into threat actors’ intricate methods to implant malicious payloads within seemingly legitimate applications and codebases. Read More HERE…

TrendMicro

Cybercriminals Exploit the Moroccan Tragedy in New Scam Campaign

September 21, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Latest News

This blog entry details a scheme that exploits the recent Morocco earthquake by impersonating the domain name of a well-known humanitarian organization for financial fraud. Read More HERE…

TrendMicro

Decoding Turla: Trend Micro’s MITRE Performance

September 21, 2023 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Cloud, Trend Micro Research : Cyber Crime, Trend Micro Research : Cyber Threats, Trend Micro Research : Data center, Trend Micro Research : Endpoints, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Latest News

This year, the MITRE Engenuity ATT&CK evaluation tested cybersecurity vendors against simulated attack scenarios mimicking the adversary group “Turla.” Learn about Trend Micro’s 100% successful protection performance. Read More HERE…