Trend Micro Research : Exploits&Vulnerabilities Archives - Page 3 of 19

Not Just Another 100% Score: MITRE ENGENUITY ATT&CK

June 18, 2024 TH Author Trend Micro Research : Cyber Crime, Trend Micro Research : Cyber Threats, Trend Micro Research : Exploits&Vulnerabilities

The latest MITRE Engenuity ATT&CK Evaluations pitted leading managed detection and response (MDR) services against threats modeled on the menuPass and BlackCat/AlphV adversary groups. Trend Micro achieved 100% detection across all 15 major attack steps with an 86% actionable rate for those steps— balancing detections and business priorities including operational continuity and minimized disruption. Read More HERE…

TrendMicro

Decoding Water Sigbin’s Latest Obfuscation Tricks

May 30, 2024 TH Author Trend Micro Research : APT&Targeted Attacks, Trend Micro Research : Articles, News, Reports, Trend Micro Research : Cloud, Trend Micro Research : Endpoints, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Reports, Trend Micro Research : Research

Water Sigbin (aka the 8220 Gang) exploited the Oracle WebLogic vulnerabilities CVE-2017-3506 and CVE-2023-21839 to deploy a cryptocurrency miner using a PowerShell script. The threat actor also adopted new techniques to conceal its activities, making attacks harder to defend against. Read More HERE…

TrendMicro

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

March 19, 2024 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Research

Jenkins, a popular open-source automation server, was discovered to be affected by a file read vulnerability, CVE-2024-23897. Read More HERE…

TrendMicro

CVE-2024-21412: DarkGate Operators Exploit Microsoft Windows SmartScreen Bypass in Zero-Day Campaign

March 13, 2024 TH Author Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Research

In addition to our Water Hydra APT zero day analysis, the Zero Day Initiative (ZDI) observed a DarkGate campaign which we discovered in mid-January 2024 where DarkGate operators exploited CVE-2024-21412. Read More HERE…

TrendMicro

Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities

February 27, 2024 TH Author Trend Micro Research : APT&Targeted Attacks, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Ransomware

This blog entry gives a detailed analysis of these recent ScreenConnect vulnerabilities. We also discuss our discovery of threat actor groups, including Black Basta and Bl00dy Ransomware gangs, that are actively exploiting CVE-2024-1708 and CVE-2024-1709 based on our telemetry. Read More HERE…

TrendMicro

SmartScreen Vulnerability: CVE-2024-21412 Facts and Fixes

February 13, 2024 TH Author Trend Micro Research : Articles, News, Reports, Trend Micro Research : Expert Perspective, Trend Micro Research : Exploits&Vulnerabilities, Trend Micro Research : Research

This entry aims to provide additional context to CVE-2024-21412, how it can be used by threat actors, and how Trend protects customers from this specific vulnerability. Read More HERE…

Trend Micro Research : Exploits&Vulnerabilities

Not Just Another 100% Score: MITRE ENGENUITY ATT&CK

Decoding Water Sigbin’s Latest Obfuscation Tricks

Importance of Scanning Files on Uploader Applications

Why a Cloud Security Platform Approach is Critical

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types

CVE-2024-21412: DarkGate Operators Exploit Microsoft Windows SmartScreen Bypass in Zero-Day Campaign

Threat Actor Groups, Including Black Basta, are Exploiting Recent ScreenConnect Vulnerabilities

SmartScreen Vulnerability: CVE-2024-21412 Facts and Fixes