Tagged: Trend Micro

Shellshocked: Some Bash #Vuln Useful Links

Last week, I was “literally” fooling around with the bash bug by reposting 9gag images about it 🙂

and mashing it up with old movie flicks:

but by the end of the week things are getting a little bit serious as my colleagues found some live malicious files in the wild

As part of the usual sharing of good tech info to my blog readers and friend and as part of public service of a responsible netizen, here are some cool links about this vulnerability:

Infographic from TrendLabs on the Bash Bug aka Shellshock vuln


Some useful links too below:

All image/link credits to Trend Micro, TrendLabs Security Intelligence Blog and CNN.

Before I end the post, the usual disclaimer/disclosure:
I work at Trend Micro. The information contained in this post is taken from Trend Micro website and TrendLabs Security Intelligence Blog. To know more on what I do full-time kindly visit my blog’s about page or visit my linkedin page. To read my blog’s disclosure policy, kindly visit my disclosure page.

For infosec, malware and tech (and not so techie) stuff, please follow me in Twitter 🙂

On Cybercrime and Interpol

I am re-posting some news release from Interpol related to Trend Micro. This is about the collaborative efforts between the two organizations to support global law enforcement programs and combat cybercrime.

24 June 2013 – Media release
INTERPOL and Trend Micro to collaborate against cybercrime

LYON, France – INTERPOL and Trend Micro Inc. have announced that the security software leader is to collaborate with the world police body to support global law enforcement programmes to combat cybercrime. The announcement is the latest in INTERPOL’s efforts to boost the global fight against cybercrime by engaging with private sector leaders.

Following talks on Friday at INTERPOL’s General Secretariat headquarters between INTERPOL Secretary General Ronald K. Noble and Trend Micro’s Chief Executive Officer, Eva Chen, Trend Micro is set to deliver training programmes to INTERPOL, government and police agencies in various participating countries to address emerging digital crime at the national and international level.

Including expertise and best practices, training will encompass e-learning modules, classroom-based training sessions, workshops and professional certifications.

“We are honoured to have earned the trust of INTERPOL to provide our expertise to keep digital information safe while exposing illegal activities,” said Eva Chen, CEO, Trend Micro. “Our team is on the frontlines of the quickly-evolving threat landscape and we look forward to sharing our analysis and insight to support global law enforcement. Alignment between public and private organizations will play a critical role against cybercrime and it will take collaboration such as this to be successful.”

Trend Micro will also help support the development of an INTERPOL cyber alert by providing expert cyber-threat analysis at INTERPOL’s Global Complex for Innovation (IGCI) when it opens in Singapore in 2014. This cyber-specific alert created by the IGCI will be used to share information on cybercrime with not only the law enforcement community but also the general public.

“Due to the complexity of the cyber-threat landscape, investigation of cybercrimes is profoundly different in nature to traditional crime, requiring high-level technical expertise and large-scale cross-jurisdictional investigations,” said INTERPOL Secretary General Ronald K. Noble.

“It is essential that law enforcement collaborate across sectors with Internet security experts such as Trend Micro so as to develop the technical expertise, tools and infrastructure necessary to effectively combat cybercrime and enhance digital security.”

“INTERPOL’s collaboration with Trend Micro therefore marks another significant step towards forging a global alliance against cybercrime,” added Secretary General Noble.

The IGCI will act as an international hub against cyber-threats to identify trends, build capacity in cybercrime units, and facilitate international cooperation through a multi-stakeholder alliance, bringing together the respective expertise and resources from specialists in law enforcement, public institutions, the private sector and academia.

“An essential element of this strategy is the creation of strategic alliances with the information technology sector to help national law enforcement keep abreast of technology trends and develop effective countermeasures,” said IGCI Executive Director Noboru Nakatani.

As a research and development facility for the identification of crimes and criminals, the state-of-the-art IGCI will provide innovative training and operational support for each of INTERPOL’s 190 member countries.

Maybe I will post some additional personal commentaries here at menardconnect.com in the next few days. But for now let me just congratulate Trend Micro and INTERPOL for these wonderful collaborative efforts.

Related Stories:
Interpol Press Release
Trend Micro Press Release

Lastly some disclosure:

I work at Trend Micro. My posts here in menardconnect.com are my own personal views and does not necessarily represent my employer’s positions, strategies or opinions. To know more about me, kindly visit my about page. To know about this blog’s disclosure policy kindly visit my disclosure page.

On Ransomware and Reveton

Ransomware is a tricky problem in the #infosec world. These type of malware “kidnaps” the users files and/or system and demands money in exchange for the file /or systems “freedom”.

According to Wikipedia, Ransomware comprises a class of malware which restricts access to the computer system that it infects, and demands a ransom paid to the creator of the malware in order for the restriction to be removed. Some forms of ransomware encrypt files on the system’s hard drive, while some may simply lock the system and display messages intended to coax the user into paying.

Some good news about ransomware that is worth sharing here at menardconnect.com

Key Figure in Police Ransomware Activity Nabbed

by Trend Micro Advanced Threats Researchers

Ransomware is a nasty scam that infiltrates your computer and tricks you into thinking that you’ve done something wrong. Police ransomware in particular informs users that they need to pay their local police a fine.

We have written detailed reports about these attacks in the past, including multiple blog posts as part of our investigations into this ongoing threat.

Trend Micro threat researchers have been studying this scam throughout 2012 and have collaborated very closely with law enforcement authorities  in several European countries, especially in Spain. Today, we are very happy to report that the Spanish Police has put the information to good use, and they have just announced in a press conference the arrest of one of the head members of the cybercriminal gang that produces the Ransomware strain known as REVETON.

The apparent arrest of this cybercriminal of Russian origin occured in Dubai, United Arab Emirates. The law enforcement authorities are working to extradite him to Spain for prosecution. Along with his arrest, the operation included the arrests of 10 other individuals tied to the money laundering component of the gang’s operations, which managed the monetization of the PaySafeCard/UKash vouchers received as payment in the scam. The gang apparently had a branch in Spain that exchanged these vouchers and converted them into actual money, which would then be transferred to the leaders of the gang in Russia.

Trend Micro is very proud that our involvement in this shared intelligence effort produced such good results. We also want to thank the Spanish Police for being proactive in this case and being able to collaborate so closely with us. We hope there will be many more victories against cybercrime like this, and will continue to work very closely with international law enforcement authorities on similar investigations.  You can access the Spanish Police press release here.

For more information on Police Ransomware, read the following blog posts:

  • New Police Ransomware Claims Fake Treaty Among AV Vendors and Police
  • Latest on Police Ransomware – It Speaks!
  • Police Ransomware Bears Fake Digital Signature
  • Police Ransomware: Evolving At a Tremendous Pace
  • New Ransomware Plays Its Victims an Audio File, Over and Over and Over…

Original Post from Trendlabs Security Intelligence Blog – Key Figure in Police Ransomware Activity Nabbed .
Image Credits: TrendLabs Security Intel Blog

Congratulations to the Spanish Police and all the LE agencies involved. Kudos to Trend Micro Advanced Threats Research Team 🙂

For more details on Reveton and this police ransomware, kindly visit:

Some disclosure:
I work at Trend Micro. The views expressed in this blog post are mine and mine alone and do not necessarily represent my employer’s positions, strategies or opinions. To know more about me (work and other stuff), kindly visit my about page. To know more about my blogs full disclosure policy, kindly visit my disclosure page.

TrendLabs PH Blogger Tour Part 2 Post

I mentioned several weeks ago that I joined the TrendLabs PH Blogger Tour and I welcomed some Pinoy Tech Bloggers to our Labs.

I got hold of some of the blogger’s articles and links about the TrendLabs Tour and as a sign of my appreciation I am giving out some link-love here at menardconnect.com

  • Inside an Anti-Virus Lab by Ron Villegas
  • Trend Micro gives a peek at global lab in PH by Glen Fontanilla
  • Trend Micro Labs Philippines Facilities Antivirus Tour by Jayson Biadog
  • A brief tour inside Trend Micro’s TrendLabs by Andrei Lim
  • XSTIG: Trend Micro TrendLabs Tour by by Florencio Jusay Jr

Will update this post when I have the other posts/links of  the other attendees

Again, thank you guys and hope to see you again soon…

TrendLabs PH Bloggers Tour

Last week I participated in our company event for PH Tech Bloggers. I presented to Pinoy Tech Bloggers our company (Trend Micro) and what do we TrendLabs dudes and dudettes do for a living 🙂

Image Credit: TrendLabs/Trend Micro

My presentation is entitled “TrendLabs Tour, 1,000,000,000 threats daily, 1,000 Threat Response Specialists fighting the good fight” and I hope (and pray) that I presented it well.

Some personal insights: It’s a refreshing experience because I have not joined an end-to-end walking tour for a long long time!!!

I’m excited too (and honestly, I’m kabado rin) as this group IS Pinoy tech bloggers, and you know how I love to connect to my fellow pinoy bloggers (now you know why this blog is called menardCONNECT.com). even if this blog is not pure tech blog 😀

To the pinoy tech bloggers who attended the event: Thank you! It was really a pleasure meeting you all. I’ll be visiting your blog sites soon, and will connect to you via sns, twitter and/or google+ maybe. I’m really poor at matching names and faces and blogsites, but I know we will meet again in blogging events (IRL and online), and when that time comes just remind me that we met in the TrendLabs Tour and I will remember you!!!

Special greets to Miray, Macky and the rest of my team mates for a job well done. Sorry I cannot mention you all here (as I haven’t got your explicit permission yet, but I can and will edit this post  after getting your blessings).

Looking forward for the next TrendLabs blogger and social media event 🙂 **Wooot!**

Update 2012.o7.17

I created a new post with the links from pinoy tech blogger attendees. Kindly view TrendLabs PH Bloggers Tour Part 2 Post

Lastly some disclosure:
I work at Trend Micro. This blog post is NOT a paid post by Trend Micro. The information contained in this post is my personal insights on the Trend Micro/TrendLabs activity.

To know more on what I do at work, kindly visit my about page.
To know more about my blog’s full disclosure policy, kindly visit my disclosure page.

Trend Micro Pilipinas: 50% Discount – Titanium Maximum Security

Trend Micro Pilipinas in Facebook is offering a 50% discount for Titanium Maximum Security product. This is their way of saying “Thank you” for the support FB users are giving to Trend Micro Pilipinas. Titanium Maximum Security costs PHP 1495, but it can be availed for PHP 747.50 by using the promotional code.

Titanium Maximum Security protects users against computer viruses, worms, Trojan horse programs, and related security threats. It protects home users against the latest threats and guards their personal information and privacy against spyware, rootkits, and other malicious software.

This is a good deal so grab na!!!

Kindly visit:


Promo period is from June 1 to June 30, 2012. Per DTI-NCR permit No. 3559, Series of 2012.

Lastly some disclosure:
I work at Trend Micro. This blog post is NOT a paid post by Trend Micro. The information contained in this post was taken from Trend Micro and Facebook.com (via Trend Micro Pilipinas Facebook Page).
To know more on what I do full-time, kindly visit my about page.
To know more about my blog’s full disclosure policy, kindly visit my disclosure page.

Power User Group Shoutout: Free AV, Free Trend Micro Titanium Maximum Security 2012

I am avid supporter of our Power User Group. I believe I posted at menardconnect.com some of their activities on 2010 and 2011.

For 2012, they have revamped the rewards system, but I believe they will still be giving away some Free AV, Free Trend Micro Titanium Maximum Security product and other cool prizes too. But I am not after the rewards you know; this post is a testament of my all out support to the team 🙂

Quoting the Power User Group site, here are the benefits of being part of Trend Micro Power User Group this year:

  • Free license to the latest Trend Micro Home Use product after getting the following scores
    • at least 30 points – Free SN for Titanium Maximum Security 2012
    • at least 60 points – additional Free SN for Titanium Antivirus+ 2012
    • at least 90 points – additional Free SN for Titanium Maximum Security 2012
  • Be one of the first to test any latest Trend Micro Technology for Consumer-based products and tools.
  • Have a say on how we develop our products and services.
  • Win more Exciting Prizes! Top PUG 2012 Program contributors for the year will receive additional incentives.

So I encourage my readers to join the Trend Micro Power User Group. Kindly visit the Trend Micro Power User Group page:


Read the agreement and check the checkbox.
Click on the Feedback.
And Register (if you are a new member) or login (if you already have a previous account).

Hurry! Because this offer may end soon!

Lastly some disclosure:
I work at Trend Micro. This blog post is NOT a paid post by Trend Micro. The information contained in this post was taken from Trend Micro (with permission from respective teams in Trend Micro).

To know more on what I do full-time kindly visit my about page.

To read my blog’s full disclosure policy, kindly visit my disclosure page.

Will post more updates about Power User Group and Titanium Maximum Security availability when its available.

If you find this post useful, kindly add me up in Twitter and Google+. You can also like my Facebook Page too 🙂

HijackThis Is Now Open Source

If you love to do computer diagnostics for possible malware and spyware infection, you will definitely know the HijackThis tool.

HijackThis (or HJT as we fondly call it) is a free tool that scans the computer to find software settings changed by malicious files (read malware, spyware and other potentially unwanted programs). HijackThis also have a good reporting tool that enables the community of experts to analyze and provide fix to the problem.

As per Trend Micro press release last Feb. 17, 2012, HijackThis is now an open source application and the Hijackthis source code is available via sourceforge.net.

Quoting the press release:

Trend Micro has offered HijackThis as a free tool since acquiring the antispyware freeware tool from its Netherlands-based creator, Merijn Bellekom in 2007. By then, it had already been downloaded more than 10 million times and was often used to submit logs to online discussion and help forums, such as Castlecops.com, Majorgeeks.com and Spywareinfo.com, to elicit comments that could help in cleaning infected desktops.


The press release also quoted the original HijackThis creator, Merijn Bellekom saying “This means that other people can build on a solid base to create or improve their own anti-malware tools”.

In my opinion this is really good news for the security community as a lot of online help forums (not just Castlecops, Majorgeeks and Spywareinfo community) uses the tool heavily. A win-win for Trend Micro and the infosec community if you will ask me 🙂

For more details on Hijackthis going Open Source kindly visit the Trend Micro press release.

Lastly, some disclosure: I work at Trend Micro. The posts I have here at menardconnect.com are my own personal views and do not reflect the views of my employer.

To know more about me kindly visit my about page.
To know about my disclosure policies kindly visit my disclosure page.

Support the Trend Micro Pilipinas Facebook Page and Win an iPad 2 Contest

I am very happy to announce that the Trend Micro Pilipinas Facebook page is now live, and to start the Facebook page launch with a big bang, Trend Micro is running a Facebook contest and they are giving away some cool prizes like iPad 2 16GB (Wifi) and some Sodexho premium pass and gift checks.

Here’s how to join:
1. Join via going to this link or clicking the image below
Join na!

The link will lead you to my contest referral page and will tell you the next steps that include Liking the Trend Micro Pilipinas Facebook Page and other steps. It will also ask if you would like to join to the Win an iPad 2 Contest, so you can start your own referral too.

I recently blogged about the Facebook Contest do’s and don’ts and I am glad that TM’s contest is fully compliant 🙂

I encourage you my friends and readers to like the Trend Micro Pilipinas Facebook page and join the Win an iPad 2 Contest. Who knows, you might be the lucky one to grab that iPad2 :). And while we are in Facebook Page topic, kindly like Menardconnect.com Facebook Page too 😀

Lastly some disclosure: I work at Trend Micro. The posts I have here at menardconnect.com are my own personal views and do not reflect the views of my employer.

To know more about me, kindly visit my about page. To know about this menardconnect.com disclosure policy kindly visit my disclosure page.

This post is _NOT_ a paid post; it’s my own little way of supporting Trendlabs and the Trend Micro Pilipinas Facebook Page.

What are you waiting for? Sali na!!!

Go Daddy and Trend Micro Deep Security

Web Hosting and Domain Registrar behemoth Go Daddy picks Trend Micro Deep Security to secure their servers.

Image Credit: godaddy.com

Wow!!! The biggest web hosting/domain registrar running Trend Micro Deep Security, this is exciting news!!!

Image Credit: trendmicro.com

Here is the snippet of the press release last week:

Go Daddy Selects Trend Micro to Help Set a New Standard for Secure Online Experiences
CUPERTINO, Calif., July 27, 2011 /PRNewswire/ — Trend Micro Incorporated (TYO: 4704;TSE: 4704), a global cloud security leader, today announced that the world’s largest provider of Web hosting, domain name registrations and net new SSL Certificates has selected Trend Micro to help them better understand and stay ahead of online threats. The Go Daddy Group, Inc. has more than 9.4 million customers, more than 49 million domain names under management and maintains more than 5 million active hosting accounts.

Trend Micro™ Deep Security, which provides advanced protection for systems in the dynamic data center-from physical, virtual or cloud servers, to virtual desktops, has enabled Go Daddy to:

  • Improve protection, with threats blocked in the cloud before they reach the Go Daddy network and servers.
  • Enhance visibility of threat activity and associated protection.
  • Implement flexible, fast responses to changing threats, with customizable rules.
  • Minimize impact on server performance for maximized customer satisfaction.
  • Lower total cost of ownership.

Supporting quote:

Todd Redfoot, GoDaddy.com Chief Information Security Officer (CISO)

“Since Trend Micro Deep Security has a small footprint, it allows us to keep the same customer density on our servers. The Deep Security console is very easy to use, and anything you can do from the console can be carried out automatically to keep the cost of administration low.”

More details on Batangas Today and Trend Micro Media Room

Some disclosure: I work at Trend Micro and the views expressed in menardconnect.com are mine and don’t necessarily represent my employer’s positions, strategies or opinions. Read my full blog disclosure here.