• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   Author / Roland Dela Paz (Threat Researcher)

Roland Dela Paz

Threat Researcher

Specially Crafted .HWP File Used for Korean Targeted Campaign

  • Posted on:May 24, 2012
  • Posted in:Exploits, Malware, Targeted Attacks, Vulnerabilities
  • Posted by:
    Roland Dela Paz (Threat Researcher)
0

A few weeks ago, we have been alerted by our colleagues from Korea to a specially crafted Hangul Word Processor document (.hwp) that exploits an application vulnerability in the Hancom Office word processing software. The file extension .HWP is a popular Korean word processor file format – just the right format for targeting Korean prospective…

Read More

Recent Threats Highlight Vulnerabilities CVE-2012-0779 and CVE-2012-0507

  • Posted on:May 8, 2012
  • Posted in:Malware, Targeted Attacks, Vulnerabilities
  • Posted by:
    Roland Dela Paz (Threat Researcher)
0

Targeted Attack Uses Recent Adobe Flash Player Vulnerability (CVE-2012-0779) Reports of a targeted attack surfaced recently. One such attack arrives as an email message that trick users into executing a malicious attachment. The malicious attachment, as expected, is a file that exploits CVE-2012-0779, found in several versions of Adobe Flash Player. Exploitation results to a…

Read More

Tibetan-themed Campaign Pushes Hybridized Malware

  • Posted on:April 14, 2012
  • Posted in:Mac, Malware, Targeted Attacks
  • Posted by:
    Roland Dela Paz (Threat Researcher)
0

In our previous blog, we focused on the emergence of hybridized malware, in which malware arrives already infected by a file infector. In effect, there are two different malware families that will run on the infected system. In this scenario, attackers are able to maximize system compromise by deploying two different payloads in one execution,…

Read More

Dutch Users Served SINOWAL for Lunch

  • Posted on:March 20, 2012
  • Posted in:Malware
  • Posted by:
    Roland Dela Paz (Threat Researcher)
1

Dutch users were recently targeted in a website compromise that involved a popular news site in the Netherlands, nu.nl. The site was compromised and modified to load a malicious iframe that resulted to visitors’ systems being infected with a SINOWAL variant. Trend Micro researcher Feike Hacquebord says that considering the different characteristics of this attack,…

Read More

Ransomware Attacks Continue to Spread Across Europe

  • Posted on:March 8, 2012
  • Posted in:Malware, Ransomware
  • Posted by:
    Roland Dela Paz (Threat Researcher)
1

Ransomware attacks are growing in popularity these days. French users were a recent target of an attack that impersonated the Gendarmerie nationale. A few months ago, Japanese users were also hit by ransomware in a one-click billing fraud scheme targeted for Android smartphones. Last year we documented two ransomware campaigns that targeted Russian users. One attack…

Read More
Page 2 of 8 ‹ 123 › »

Security Predictions for 2019

  • Our security predictions for 2019 are based on our experts’ analysis of the progress of current and emerging technologies, user behavior, and market trends, and their impact on the threat landscape. We have categorized them according to the main areas that are likely to be affected, given the sprawling nature of the technological and sociopolitical changes under consideration.
    Read our security predictions for 2019.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

  • Mac Backdoor Linked to Lazarus Targets Korean Users
  • New Magecart Attack Delivered Through Compromised Advertising Supply Chain
  • Microsoft November 2019 Patch Tuesday Reveals 74 Patches Before Major Windows Update
  • September Patch Tuesday Bears More Remote Desktop Vulnerability Fixes and Two Zero-Days
  • Magecart Skimming Attack Targets Mobile Users of Hotel Chain Booking Websites

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.