Research, News, and Perspectives

Cloud

Why a Cloud Security Platform Approach is Critical

Explore how a cybersecurity platform with attack surface management and runtime protection capabilities can enhance your cloud security posture.

Security Strategies Apr 03, 2024

Ransomware

Unveiling the Fallout: Operation Cronos' Impact on LockBit Following Landmark Disruption

Our new article provides key highlights and takeaways from Operation Cronos' disruption of LockBit's operations, as well as telemetry details on how LockBit actors operated post-disruption.

Research Apr 03, 2024

APT & Targeted Attacks

Earth Freybug Uses UNAPIMON for Unhooking Critical APIs

This article provides an in-depth look into two techniques used by Earth Freybug actors: dynamic-link library (DLL) hijacking and application programming interface (API) unhooking to prevent child processes from being monitored via a new malware we’ve discovered and dubbed UNAPIMON.

Research Apr 02, 2024

Ransomware

Agenda Ransomware Propagates to vCenters and ESXi via Custom PowerShell Script

This blog entry discusses the Agenda ransomware group's use of its latest Rust variant to propagate to VMWare vCenter and ESXi servers.

Research Mar 26, 2024

Compliance & Risks

NIST Launches Cybersecurity Framework (CSF) 2.0

On February 26, 2024, the National Institute of Standards and Technology (NIST) released the official 2.0 version of the Cyber Security Framework (CSF).

Expert Perspective Mar 20, 2024

Exploits & Vulnerabilities

TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types

CVE-2024-27198 and CVE-2024-27199 are vulnerabilities within the TeamCity On-Premises platform that can allow attackers to gain administrative control over affected systems.

Research Mar 19, 2024

Exploits & Vulnerabilities

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

Jenkins, a popular open-source automation server, was discovered to be affected by a file read vulnerability, CVE-2024-23897.

Research Mar 19, 2024

Cyber Crime

The Dynamic DoS Threat

ENISA Report Unveils a Complex Cyber Landscape

Reports Mar 18, 2024

APT & Targeted Attacks

Earth Krahang Exploits Intergovernmental Trust to Launch Cross-Government Attacks

Since early 2022, we have been monitoring an APT campaign that targets several government entities worldwide, with a strong focus in Southeast Asia, but also seen targeting Europe, America, and Africa.

Research Mar 18, 2024

Artificial Intelligence (AI)

A Necessary Digital Odyssey of RPA and AI/ML at HUD

Explore two RPA and AI/ML use cases at HUD during the operational challenges of the longest US Government shutdown, a rigid legacy IT environment, and complex federal regulations.

Expert Perspective Mar 13, 2024

Research, News, and Perspectives

CVE-2024-21412: DarkGate Operators Exploit Microsoft Windows SmartScreen Bypass in Zero-Day Campaign

Why a Cloud Security Platform Approach is Critical

Unveiling the Fallout: Operation Cronos' Impact on LockBit Following Landmark Disruption

Earth Freybug Uses UNAPIMON for Unhooking Critical APIs

Agenda Ransomware Propagates to vCenters and ESXi via Custom PowerShell Script

NIST Launches Cybersecurity Framework (CSF) 2.0

TeamCity Vulnerability Exploits Lead to Jasmin Ransomware, Other Malware Types

Jenkins Args4j CVE-2024-23897: Files Exposed, Code at Risk

The Dynamic DoS Threat

Earth Krahang Exploits Intergovernmental Trust to Launch Cross-Government Attacks

A Necessary Digital Odyssey of RPA and AI/ML at HUD

Resources

Support

About Trend

Research, News, and Perspectives

Trending Topics

Resources

Support

About Trend

The Americas

Middle East & Africa

Europe

Asia & Pacific