Does Home IoT Compromise Enterprise Security?

The most recent Pwn2Own (Fall 2021 Pwn2Own Austin) includes more IoT entries than ever. This gives us an opportunity to probe today’s largest and newest enterprise attack surface: the home office. Read More HERE…

Read more

Private 5G Security Risks in Manufacturing Part 3

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. Read More HERE…

Read more

Security Risks with Private 5G Networks in Manufacturing Part. 3 Security Evangelist

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own telecom infrastructures. However, the “democratization of communications” entails its own risks that have not yet been made clear. To identify these risks, Trend Micro performed tests using an environment modeled after a steelworks with 5G equipment. In this third installment, we will describe the four penetration routes and three signal interception points identified in these tests, and we will discuss attack scenarios that exploit these weaknesses. Read More HERE…

Read more

Security Risks with Private 5G in Manufacturing Companies Part. 2 Security Evangelist

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own telecom infrastructures. However, the “democratization of communications” entails its own risks that have not yet been made clear. To identify these risks, Trend Micro performed tests using an environment modeled after a steelworks with 5G equipment. Read More HERE…

Read more

Analyzing Email Services Abused for Business Email Compromise Threats Analyst Threat Researcher Threats Analyst Sr. Threat Researcher

We analyzed five major types of email channels, and the techniques in keywords and domain names BEC actors use to appear legitimate to potential victims. Read More HERE…

Read more

Security Risks with Private 5G in Manufacturing Companies Part. 1 Security Evangelist

We can see signs of increased activity in areas of business that use 5G around the world. 5G technology will usher in new personal services through smartphones, and it will also play a large part in industry. The option of Private 5G lets private companies and local governments have their own telecom infrastructures. However, the “democratization of communications” entails its own risks that have not yet been made clear. To identify these risks, Trend Micro performed tests using an environment modeled after a steelworks with 5G equipment. Read More HERE…

Read more

This Week in Security News – September 17, 2021 VP, Threat Intelligence

2021 Midyear Cybersecurity Report and Apple emergency patches fix zero-click iMessage bug used to inject NSO spyware Read More HERE…

Read more

Analyzing The ForcedEntry Zero-Click iPhone Exploit Used By Pegasus Threats Analyst

Citizen Lab has released a report on a new iPhone threat dubbed ForcedEntry. This zero-click exploit seems to be able to circumvent Apple’s BlastDoor security, and allow attackers access to a device without user interaction. Read More HERE…

Read more

This Week in Security News – September 10, 2021 VP, Threat Intelligence

Biden announces cybersecurity initiative partnership, US Government seeks public feedback on draft federal zero trust strategy and more. Read More HERE…

Read more

This Week in Security News – September 3, 2021 VP, Threat Intelligence

Proxytoken vulnerability can modify Exchange server configs and Lockbit jumps its own countdown, publishes Bangkok Air files Read More HERE…

Read more