Our New Blog
Security Intelligence Blog has a new home! Our new site is https://www.trendmicro.com/en_us/research.html Read new threat discoveries, relevant perspectives on security...
News
Microsoft’s new report suggest a rapid transformation in cyber security due to the pandemic
In just two months of the pandemic, the digital world went through "two years worth of digital transformation" according to...
The cybersecurity skills gap is misunderstood
Nearly every year, a trade association, a university, an independent researcher, or a large corporation—and sometimes all of them and...
The Russian quality system (Roskachestvo) reported on the new traps of scams in WhatsApp
The absolute majority of fraud in WhatsApp occurs through social engineering when the text prompts the user to click on...
VolExp – Volatility Explorer
This program allows the user to access a Memory Dump. It can also function as a plugin to the Volatility...
InsightIDR Demo: Cloud-Native SIEM vs. Modern Security Challenges
As much as the phrase “a crowded theatre” calls to mind images from bygone days, we’re old enough to remember...
AWS Recon – Multi-threaded AWS Inventory Collection Tool With A Focus On Security-Relevant Resources And Metadata
A multi-threaded AWS inventory collection tool.The creators of this tool have a recurring need to be able to efficiently collect...
SMBs assaulted by ‘mercenary’ DeathStalker APT espionage campaigns
The hacker collective known as DeathStalker has recently widened its footprint to include small to medium-sized business (SMB) targets in...
A week in security (August 17 – 23)
Last week on Malwarebytes Labs, we looked at the impact of COVID-19 on healthcare cybersecurity, dug into some pandemic stats...
TikTok Files Lawsuit Against the U.S. Government Over Ban of Its Application
Tiktok has confirmed that it is going to sue the U.S. government for banning the use of Tiktok application in...
Lifting the veil on DeathStalker, a mercenary triumvirate
State-sponsored threat actors and sophisticated attacks are often in the spotlight. Indeed, their innovative techniques, advanced malware platforms and 0-day...
Yeti – Your Everyday Threat Intelligence
Yeti is a platform meant to organize observables, indicators of compromise, TTPs, and knowledge on threats in a single, unified...
Parth – Heuristic Vulnerable Parameter Scanner
Some HTTP parameter names are more commonly associated with one functionality than the others. For example, the parameter ?url= usually...
Life as a Rapid7 Rotato: Launch Your Career
At Rapid7, we believe that by hiring a team with a strong diversity of mindset, different levels of experience, and...
Here’s how to Ensure Data Security Using FShred App
Users are well aware of the fact that while deleting photos, videos, files, or any other form of data on...
Uber’s Former Chief Security Officer Charged for Covering up A Massive Data Breach
Uber's former chief security officer, Joe Sullivan, was very recently charged by the federal prosecutors in the United States for...
Pyre-Check – Performant Type-Checking For Python
Pyre is a performant type checker for Python compliant with PEP 484. Pyre can analyze codebases with millions of lines...
Intel Owl – Analyze Files, Domains, IPs In Multiple Ways From A Single API At Scale
Do you want to get threat intelligence data about a file, an IP or a domain?Do you want to get...
Russian media reported on fake domains for pre-ordering coronavirus vaccine
After the Russian Ministry of Health registered the first coronavirus vaccine, the number of new domains associated with the vaccine...
Scan-For-Webcams – Scan For Webcams In The Internet
Automatically scan for publically accessible webcams around the internetUsage python MJPG.py : for public MJPG streamers around the internet python...
Cloud-Sniper – Virtual Security Operations Center
Cloud Security OperationsWhat is Cloud Sniper?Cloud Sniper is a platform designed to manage Security Operations in cloud environments. It is...
‘Just tell me how to fix my computer:’ a crash course on malware detection
Malware. You’ve heard the term before, and you know it’s bad for your computer—like a computer virus. Which begs the...
SecGen – Create Randomly Insecure VMs
SecGen creates vulnerable virtual machines, lab environments, and hacking challenges, so students can learn security penetration testing techniques.Boxes like Metasploitable2...
ADBSploit – A Python Based Tool For Exploiting And Managing Android Devices Via ADB
A python based tool for exploiting and managing Android devices via ADBCurrently on developmentScreenrecordStream ScreenrecordExtract ContactsExtract SMSExtract Messasing App Chats...
