• Trend Micro
  • About TrendLabs Security Intelligence Blog
Search:
  • Home
  • Categories
    • Ransomware
    • Vulnerabilities
    • Exploits
    • Targeted Attacks
    • Deep Web
    • Mobile
    • Internet of Things
    • Malware
    • Bad Sites
    • Spam
    • Botnets
    • Social
    • Open source
Home   »   internet of things

Grouping Linux IoT Malware Samples With Trend Micro ELF Hash
  • Posted on:April 20, 2020 at 7:21 am
  • Posted in:Internet of Things, Open source
  • Author:
    Fernando Mercês (Senior Threat Researcher)
0

We created Trend Micro ELF Hash (telfhash), an open-source clustering algorithm that effectively clusters Linux IoT malware created using ELF files.

Read More
Tags: Clustering algorithminternet of thingsLinux malware

IoT Attack Opportunities Seen in the Cybercrime Underground
  • Posted on:September 10, 2019 at 2:37 am
  • Posted in:Internet of Things
  • Author:
    Trend Micro
0

We looked into IoT-related discussions from several cybercrime underground communities and found discussions ranging from tutorials to actual monetization schemes for IoT-related attacks. For this entry, we provide an overview of what cybercriminals see as perfect openings for attacks on IoT technologies.

Read More
Tags: cybercrime undergroundiiotindustrial internet of thingsinternet of thingsIOT

Bashlite IoT Malware Updated with Mining and Backdoor Commands, Targets WeMo Devices
  • Posted on:April 3, 2019 at 1:16 am
  • Posted in:Botnets, Exploits, Internet of Things, Malware
  • Author:
    Trend Micro
0

We uncovered an updated Bashlite malware designed to add infected internet-of-things devices to a distributed-denial-of-service (DDoS) botnet. Based on the Metasploit module it exploits, the malware targets devices with the WeMo Universal Plug and Play (UPnP) application programming interface (API).

This updated iteration of Bashlite is notable. For one, its arrival method is unique in that it doesn’t rely on specific vulnerabilities (e.g., security flaws assigned with CVEs). It instead abuses a publicly available remote-code-execution (RCE) Metasploit module.  It now also sports additional DDoS-related commands, and added new ones that gave the malware cryptocurrency mining and backdoor capabilities. It can also deliver malware that removes competing botnet malware.

Read More
Tags: BASHLITEinternet of thingsMetasploit

New Exploit Kit “Novidade” Found Targeting Home and SOHO Routers
  • Posted on:December 11, 2018 at 2:00 am
  • Posted in:Internet of Things, Malware
  • Author:
    Joseph C Chen (Fraud Researcher)
0

We identified a new exploit kit we named Novidade that targets home or small office routers by changing their Domain Name System (DNS) settings via cross-site request forgery (CSRF), enabling attacks on a victim’s mobile device or desktop through web applications in which they’re authenticated with. Once the DNS setting is changed to that of a malicious server, the attacker can execute a pharming attack, redirecting the targeted website traffic from all devices connected to the same router.

Read More
Tags: internet of thingsNovidaderouters

Water and Energy Sectors Through the Lens of the Cybercriminal Underground
  • Posted on:November 29, 2018 at 4:58 am
  • Posted in:Internet of Things
  • Author:
    Trend Micro
0

In our research Exposed and Vulnerable Critical Infrastructure: Water and Energy Industries, we not only found exposed industrial control system (ICS) human machine interfaces (HMIs) but also pointed out how these systems were at risk. This risk is corroborated by the active interest in water and energy ICSs shown by different kinds of cybercriminal groups.

Read More
Tags: critical infrastructuresICSiiotindustrial internet of thingsinternet of thingsIOT
Page 1 of 812 › »

Security Predictions for 2020

  • Cybersecurity in 2020 will be viewed through many lenses — from differing attacker motivations and cybercriminal arsenal to technological developments and global threat intelligence — only so defenders can keep up with the broad range of threats.
    Read our security predictions for 2020.

Business Process Compromise

  • Attackers are starting to invest in long-term operations that target specific processes enterprises rely on. They scout for vulnerable practices, susceptible systems and operational loopholes that they can leverage or abuse. To learn more, read our Security 101: Business Process Compromise.

Popular Posts

  • Tropic Trooper’s Back: USBferry Attack Targets Air-gapped Environments
  • Netwalker Fileless Ransomware Injected via Reflective Loading
  • Spyware Disguises as Android Applications on Google Play
  • Operation Poisoned News: Hong Kong Users Targeted With Mobile Malware via Local News Links
  • Various Google Play ‘Beauty Camera’ Apps Send Users Pornographic Content, Redirect Them to Phishing Websites and Collect Their Pictures

Stay Updated

  • Home and Home Office
  • |
  • For Business
  • |
  • Security Intelligence
  • |
  • About Trend Micro
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • Privacy Statement
  • Legal Policies
  • Copyright © Trend Micro Incorporated. All rights reserved.