Corporate Partners

Top IT Security Bloggers

TrendLabs - Malware Blog
  • Targeted Attacks: Not All Attacks Need To Be Sophisticated

    TrendLabs - Malware Blog
    The security industry loves to talk about how “sophisticated” attacks can be. Usually this takes the form of us saying how advanced and sophisticated an attack is, what new methods were used to hide servers or make analysis harder, etcetera. However, it’s easy to forget that not all attacks need to be technically sophisticated; instead […]
  • FTC Has Authority to Enforce Corporate Cybersecurity

    TrendLabs - Malware Blog
    Up to now, there have been relatively few laws or regulations from government agencies that mandate just how companies should protect their data. In the United States, however, that may be about to change. Earlier this week, the United States Court of Appeals for the Third Circuit decided in FTC v. Wyndham Worldwide Corp. that the […]
  • FuTuRology: Watch Out for Literally Crippling Healthcare Technologies

    TrendLabs - Malware Blog
    We’re back to look inside the crystal ball of future technologies. This is the third post of the “FuTuRology” project, a blog series where the Trend Micro Forward-Looking Threat Research (FTR) team predicts the future of popular technologies. In the last two installments of this series, we introduced our future technology threat landscape project and started to […]
  • Revisiting CVE-2015-3823: Mediaserver Bug Leads To Heap Overflow, Too

    TrendLabs - Malware Blog
    Issues surrounding the Android mediaserver component continue. It has been brought to our attention that a vulnerability (CVE-2015-3823) could (theoretically) be used for arbitrary code execution as well. On August 23, Google raised the severity of this vulnerability to “critical”, indicating that code execution was possible. We have previously discussed how this bug in the mediaserver component of […]
  • Ashley Madison: A Tale of Sex, Lies, and Data Breaches

    TrendLabs - Malware Blog
    Data breaches rarely make for sensational news. Media outlets may report about them but public interest often dies down after a week or two. Or that was the case until the Ashley Madison breach happened. The recent leak of the Ashley Madison accounts is the culmination of a month-long digital stand-off between the site that […]
  • Microsoft Issues Out-of-band Patch For Internet Explorer

    TrendLabs - Malware Blog
    Microsoft has released MS15-093, an out-of-band update for all supported versions of Windows. This bulletin fixes a vulnerability in Internet Explorer (designated as CVE-2015-2502) that allowed an attacker to run arbitrary code on a user’s system if they visited a malicious site. A compromised site, spear phishing, and/or malicious ads could all be used to deliver exploits […]
  • Pawn Storm’s Domestic Spying Campaign Revealed; Ukraine and US Top Global Targets

    TrendLabs - Malware Blog
    Why would Pawn Storm, the long-running cyber-espionage campaign, set its sights on a Russian punk rock group? Sure, Pussy Riot is controversial. Members of the feminist band had previously been thrown in jail for their subversive statements against the Orthodox Church and Russian patriarchal system. But why would attackers have any interest in them? What […]
  • 2Q Security Roundup: New Hacks Threaten Public Technologies

    TrendLabs - Malware Blog
    A supposed airline hack and other similar incidences this past quarter have made it clear: Attackers are finding more inventive ways to infiltrate and abuse existing technologies. This signals a rise in threats that go beyond just stealing data, and whose effects are more physical, evident, or close to home. Take for instance the increasing […]
  • MediaServer Takes Another Hit with Latest Android Vulnerability

    TrendLabs - Malware Blog
    The “hits” keep on coming for Android’s mediaserver component. We have discovered yet another Android mediaserver vulnerability, which can be exploited to perform attacks involving arbitrary code execution. With this new vulnerability, an attacker would be able to run their code with the same permissions that the mediaserver program already has as part of its […]
  • Why Vulnerability Research Is A Good Thing

    TrendLabs - Malware Blog
    Earlier this week Oracle’s CSO released a blog post that talked about why people should stop looking for vulnerabilities in their software products. Needless to say, this did not go down well with the security community – and the post was soon taken down with a statement from the company adding that the post “does not reflect our […]

Market Place