Dark Reading is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them.Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Careers & People

11/25/2019
11:00 AM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Trend Micro Announces Winners of Global Capture the Flag Event

Fifth annual competition arms young professionals with critical industry skills.

DALLAS, November 25, 2019 Trend Micro Incorporated (TYO: 4704; TSE: 4704), a global leader in cybersecurity solutions, today announced the winners of its global Capture the Flag (CTF) competition, which challenges global cybersecurity talent and provides real-world experience in today’s most critical threat areas.

Now in its fifth year, the Raimund Genes Cup finals consisted of 13 teams, including the top 10 teams from the online qualifier. Additionally, three teams from Trend Micro regional events in Brazil, Egypt and the Netherlands were invited to join the final global competition. Teams faced off in Tokyo, Japan on November 23-24. The winners are as follows:

First place: p4, Poland

Second place: GASoline Beta, China

Third place: Balsn, Taiwan

The winning team received JPY1,000,000 (around US $9,000) and 15,000 Zero Day Initiative Rewards Program points per player. The second and third place teams received JPY300,000 and JPY200,000, (nearly US$3,000 and $2,000 respectively).

“Global organizations are struggling to keep up the defenses against a determined and increasingly well-resourced enemy backed by a trillion-dollar cybercrime economy – putting corporate finances, data and information at risk,” said Mike Gibson, vice president of threat research for Trend Micro. “Our CTF attracts highly skilled security talent from around the world who work to combat attackers and want to further their knowledge. Partnering with security professionals from outside Trend Micro helps make the security industry stronger.”

Trend Micro researchers designed the real-world scenarios in this CTF event to test the teams’ expertise in skills that are highly sought-after by employers. Challenges focused on areas such as forensics and exploitation, IoT, reverse engineering, open source intelligence, mobile, and machine learning.

“Hosting a CTF event that is both challenging and fun is difficult, and many are unable to do it well,” said Alan Lee, manager of the HITCON CTF. “Trend Micro’s annual event meets these expectations, challenging teams in critical areas that are most needed to defend against today’s threats. We are happy to have the winning team qualify for the HITCON CTF.”

This year’s Trend Micro CTF consisted of two rounds: an online qualifier and the finals. The online qualifier took place on September 7-8, featuring Jeopardy-style questions that challenged participants to solve various security problems at speed.

The worldwide cybersecurity skills shortage now stands at more than four million, including 561,000 in North America[1]. To cope with this increased hiring demand, the global security workforce needs to increase by a staggering 145%.

Trend Micro hosts and supports over 50 CTF-style competitions annually around the world, including 15 in collaboration with the Organization of American States,[2] which are specific to women across the Americas. These combined efforts are helping to shape the next generation of cybersecurity professionals.

For more information on Trend Micro’s CTF, please visit: www.trendmicro.com/tmctf.

About Trend Micro

Trend Micro Incorporated, a global leader in cybersecurity solutions, helps to make the world safe for exchanging digital information. Our innovative solutions for consumers, businesses, and governments provide layered security for data centers, cloud environments, networks, and endpoints. All our products work together to seamlessly share threat intelligence and provide a connected threat defense with centralized visibility and control, enabling better, faster protection. With more than 6,000 employees in over 50 countries and the world’s most advanced global threat intelligence, Trend Micro secures your connected world. For more information, visit www.trendmicro.com.

Comment  | 
Print  | 
More Insights
Comments
Newest First  |  Oldest First  |  Threaded View
Navigating Security in the Cloud
Diya Jolly, Chief Product Officer, Okta,  12/4/2019
Register for Dark Reading Newsletters
White Papers
Video
Cartoon Contest
Current Issue
Navigating the Deluge of Security Data
In this Tech Digest, Dark Reading shares the experiences of some top security practitioners as they navigate volumes of security data. We examine some examples of how enterprises can cull this data to find the clues they need.
Flash Poll
Rethinking Enterprise Data Defense
Rethinking Enterprise Data Defense
Frustrated with recurring intrusions and breaches, cybersecurity professionals are questioning some of the industrys conventional wisdom. Heres a look at what theyre thinking about.
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2019-16772
PUBLISHED: 2019-12-07
The serialize-to-js NPM package before version 3.0.1 is vulnerable to Cross-site Scripting (XSS). It does not properly mitigate against unsafe characters in serialized regular expressions. This vulnerability is not affected on Node.js environment since Node.js's implementation of RegExp.prototype.to...
CVE-2019-9464
PUBLISHED: 2019-12-06
In various functions of RecentLocationApps.java, DevicePolicyManagerService.java, and RecognitionService.java, there is an incorrect warning indicating an app accessed the user's location. This could dissolve the trust in the platform's permission system, with no additional execution privileges need...
CVE-2019-2220
PUBLISHED: 2019-12-06
In checkOperation of AppOpsService.java, there is a possible bypass of user interaction requirements due to mishandling application suspend. This could lead to local information disclosure no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVers...
CVE-2019-2221
PUBLISHED: 2019-12-06
In hasActivityInVisibleTask of WindowProcessController.java there�s a possible bypass of user interaction requirements due to incorrect handling of top activities in INITIALIZING state. This could lead to local escalation of privilege with no additional execution privileges need...
CVE-2019-2222
PUBLISHED: 2019-12-06
n ihevcd_parse_slice_data of ihevcd_parse_slice.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-8.0 Android...