Tag Archive for: MICRO

Trend Micro fixes bug Chinese hackers exploited for espionage

/in


Dragon

Trend Micro says it patched a DLL hijacking flaw in Trend Micro Security used by a Chinese threat group to side-load malicious DLLs and deploy malware.

As Sentinel Labs revealed in an early-May report, the attackers exploited the fact that security products run with high privileges on Windows to plant and load their own maliciously crafted DLL into memory, allowing them to elevate privileges and execute code.

“Trend Micro is aware of some research that was published on May 2, 2022, regarding a purported Central-Asian-based threat actor dubbed ‘Moshen Dragon’ that had deployed malware clusters that attempted to hijack various popular security products, including one from Trend Micro,” the cybersecurity company said.

After analyzing the report and its product line, the company discovered that only the Trend Micro Security consumer-focused product was affected, with no other commercial or business products impacted.

“For Trend Micro Security (Consumer), a fix was deployed via Trend Micro’s ActiveUpdate (AU) on May 19, 2022, and any user with an active internet connection should receive the update shortly if they have not yet already received it,” the antivirus vendor added.

DLL hijacking bugs in multiple security products

The Moshen Dragon group also reportedly abused similar bugs in security products from Bitdefender, McAfee, Symantec, and Kaspersky to install Impacket, a Python kit designed for lateral movement and remote code execution via Windows Management Instrumentation (WMI).

Impacket also has credential-stealing capabilities powered by an open-source tool used to capture the details of password change events on a domain

Moshen Dragon attack flow
Moshen Dragon attack flow (Sentinel Labs)

According to Sentinel Labs, the final payloads dropped by the Moshen Dragon operators include variants of PlugX and ShadowPad, two backdoors used by multiple Chinese APTs in recent years.

The threat actors have used these tactics to target telecommunication service providers in Central Asia with the end goal of exfiltrating data from as many systems as possible.

While Trend Micro has published an advisory detailing the mitigation measures taken to stop Moshen Dragon from abusing its security products for…

Source…

Mobile Application Security Testing Market – A Comprehensive Study by Key Players:Accenture (Republic of Ireland), IBM (US), Micro Focus (UK), Veracode (US), Synopsys (US), Pradeo (France), Rapid7 (US), Tieto (Finland), Trustwave (US), WhiteHat Security (US)

/in


The report investigates the current status of the Mobile Application Security Testing Market and analyses the future trends of the Mobile Application Security Testing market. The report explores the market opportunities available in the Mobile Application Security Testing market. The report assesses the Mobile Application Security Testing market sourced from the currently available data. The report provides in-depth information of the Mobile Application Security Testing market that helps market players understand and analyse the Mobile Application Security Testing industry in terms of key products and services, value-added products, emerging markets, and industries. The report provides basic analysis of the Mobile Application Security Testing market. The report determines the current production and future demand for the products and services, and assists the market players in planning for investment. The report analyses the major exporting and importing producers, overview of the industry, preliminary and secondary assessment of its future potential. The report summarizes the knowledge gaps and recommendations.

Key Players in the Mobile Application Security Testing market:

Accenture (Republic of Ireland), IBM (US), Micro Focus (UK), Veracode (US), Synopsys (US), Pradeo (France), Rapid7 (US), Tieto (Finland), Trustwave (US), WhiteHat Security (US)

Request a sample report : https://www.mraccuracyreports.com/report-sample/451764

The report studies the Mobile Application Security Testing market using cross-sectional multiple regression analysis. The report provides estimates for future market demand. The report also uses secondary analysis to examines the Mobile Application Security Testing market. The report provides detailed analysis Mobile Application Security Testing market value chain. The report analyses the factors affecting the Mobile Application Security Testing market. The report lists the data and trends that studies various components of the Mobile Application Security Testing market. The report reviews the current Mobile Application Security Testing market production and price patterns. The report reviews the production, imports, and profitability…

Source…

Information-Centric Endpoint and Mobile Protection Market to Witness Huge Growth by 2029 -WinMagic, Microsoft, Kaspersky Lab, Sophos, Dell, Trend Micro, Vera, Titus, Symantec, Digital Guardian, Seclore, Ionic Security, Virtru, BlackBerry

/in


The Information-Centric Endpoint and Mobile Protection report is an in-depth examination of the global Information-Centric Endpoint and Mobile Protection’s general consumption structure, development trends, sales techniques, and top nations’ sales. The research looks at well-known providers in the global Information-Centric Endpoint and Mobile Protection industry, as well as market segmentation, competition, and the macroeconomic climate. A complete Information-Centric Endpoint and Mobile Protection analysis takes into account a number of aspects, including a country’s population and business cycles, as well as market-specific microeconomic consequences. The global market research also includes a specific competition landscape section to help you better understand the Information-Centric Endpoint and Mobile Protection industry. This information can help stakeholders make educated decisions before investing.

Leading players of Information-Centric Endpoint and Mobile Protection including:

WinMagic, Microsoft, Kaspersky Lab, Sophos, Dell, Trend Micro, Vera, Titus, Symantec, Digital Guardian, Seclore, Ionic Security, Virtru, BlackBerry

Free Sample Report + All Related Graphs & Charts @ https://www.accuracyreports/report-sample/17471

The report is classified into multiple sections which consider the competitive environment, latest market events, technological developments, countries and regional details related to the Information-Centric Endpoint and Mobile Protection. The section that details the pandemic impact, the recovery strategies, and the post-pandemic market performance of each actor is also included in the report. The key opportunities that may potentially support the Information-Centric Endpoint and Mobile Protection are identified in the report. The report specifically focuses on the near term opportunities and strategies to realize its full potential. The uncertainties that are crucial for the market players to understand are included in the Information-Centric Endpoint and Mobile Protection report.

As a result of these issues, the Information-Centric Endpoint and Mobile Protection industry has been hampered. Because of…

Source…

Trend Micro antivirus modified Windows registry by mistake — How to fix

/in


Trend Micro

Trend Micro antivirus has fixed a false positive affecting its Apex One endpoint security solution that caused Microsoft Edge updates to be tagged as malware and the Windows registry to be incorrectly modified.

According to hundreds of customer reports that started streaming in earlier this week on the company’s forum and on social networks, the false positive affected update packages stored in the Microsoft Edge installation folder.

As users further revealed, the Trend Micro Apex One flagged the browser updates as Virus/Malware: TROJ_FRS.VSNTE222 and Virus/Malware: TSC_GENCLEAN.

Fix and workaround available

The cybersecurity software maker addressed the issue and published an advisory urging customers to update their products and ensure that the Smart Scan Agent Pattern and Smart Scan Pattern are updated to the latest version.

“Trend Micro is aware of a detection issue that was reported earlier today regarding a potential false positive with Microsoft Edge and a Trend Micro Smart Scan pattern,” the company said.

“The pattern has been updated to remove the detection in question and we are doing an investigation on the root cause of the issue. More information can be provided after the investigation is complete.

“Please confirm that both the Smart Scan Agent Pattern is 17.541.00 or later AND Smart Scan Pattern is 21474.139.09 or later which resolves the issue.”

Trend Micro also shared a temporary workaround if the pattern update didn’t fix the issue which requires adding multiple Microsoft Edge folders to Apex One’s exclusion list.

Restoring registry changes

While the fix provided by Trend Micro for the false positive can easily be applied by updating Apex One, some customers also reported that this issue also led to Windows registry entries being altered after the agent’s Damage Cleanup tool was executed.

“It was reported that some customers observed some registry changes as a result of the detection depending on their endpoint cleaning configuration settings,” Trend Micro added.

Widnows Registry changes seen by Trend Micro customer
Widnows Registry changes seen by Trend Micro customer

This requires affected users to restore backups made by the Apex One agent through a procedure that will help revert the changes made…

Source…