Trend Micro Research : Articles, News, Reports

Spam Campaign Abuses Atlassian Jira, Targets Government and Corporate Entities

Spam Campaign Abuses Atlassian Jira, Targets Government and Corporate Entities 2026-02-17 at 02:00 By We uncover how a campaign used Atlassian Jira Cloud to launch automated and targeted spam campaigns, exploiting trusted SaaS workflows to bypass security controls. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Spam Campaign Abuses Atlassian Jira, Targets Government and Corporate Entities Read More »

U.S. Public Sector Under Siege

U.S. Public Sector Under Siege 2026-02-06 at 00:10 By Discover why Government and Education must prioritize Cyber Risk Management. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

U.S. Public Sector Under Siege Read More »

PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups

PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups 2026-01-26 at 17:42 By PeckBirdy is a sophisticated JScript-based C&C framework used by China-aligned APT groups to exploit LOLBins across multiple environments, delivering advanced backdoors to target gambling industries and Asian government entities. This article is an excerpt from Trend Micro Research,

PeckBirdy: A Versatile Script Framework for LOLBins Exploitation Used by China-aligned Threat Groups Read More »

Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware

Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware 2026-01-22 at 16:31 By TrendAI™ Research provides a technical analysis of a compromised EmEditor installer used to deliver multistage malware that performs a range of malicious actions. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Watering Hole Attack Targets EmEditor Users with Information-Stealing Malware Read More »

From Extension to Infection: An In-Depth Analysis of the Evelyn Stealer Campaign Targeting Software Developers

From Extension to Infection: An In-Depth Analysis of the Evelyn Stealer Campaign Targeting Software Developers 2026-01-19 at 13:40 By This blog entry provides an in-depth analysis of the multistage delivery of the Evelyn information stealer, which was used in a campaign targeting software developers. This article is an excerpt from Trend Micro Research, News and

From Extension to Infection: An In-Depth Analysis of the Evelyn Stealer Campaign Targeting Software Developers Read More »

Your 100 Billion Parameter Behemoth is a Liability

Your 100 Billion Parameter Behemoth is a Liability 2026-01-17 at 18:04 By The “bigger is better” era of AI is hitting a wall. We are in an LLM bubble, characterized by ruinous inference costs and diminishing returns. The future belongs to Agentic AI powered by specialized Small Language Models (SLMs). Think of it as a

Your 100 Billion Parameter Behemoth is a Liability Read More »

Introducing ÆSIR: Finding Zero-Day Vulnerabilities at the Speed of AI

Introducing ÆSIR: Finding Zero-Day Vulnerabilities at the Speed of AI 2026-01-15 at 19:58 By TrendAI™’s ÆSIR platform combines AI automation with expert oversight to discover zero-day vulnerabilities in AI infrastructure – 21 CVEs across NVIDIA, Tencent, and MLflow since mid-2025. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Introducing ÆSIR: Finding Zero-Day Vulnerabilities at the Speed of AI Read More »

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™ 2026-01-13 at 11:05 By This blog discusses notable modern TTPs observed from SHADOW-AETHER-015 and Earth Preta, from Trend Research™ monitoring and Trend Vision One™ intelligence. These findings support the performance of TrendAI™ in the 2025 MITRE ATT&CK Evaluations.

Key Insights on SHADOW-AETHER-015 and Earth Preta from the 2025 MITRE ATT&CK Evaluation with Trend Vision One™ Read More »

Analyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and Response

Analyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and Response 2026-01-12 at 13:43 By Threat actors exploited Cloudflare’s free-tier infrastructure and legitimate Python environments to deploy the AsyncRAT remote access trojan, demonstrating advanced evasion techniques that abuse trusted cloud services for malicious operations. This article is an excerpt from Trend Micro Research, News and Perspectives

Analyzing a Multi-Stage AsyncRAT Campaign via Managed Detection and Response Read More »

Trend Micro’s Pivotal Role in INTERPOL’s Operation Sentinel: Dismantling Digital Extortion Networks Across Africa

Trend Micro’s Pivotal Role in INTERPOL’s Operation Sentinel: Dismantling Digital Extortion Networks Across Africa 2025-12-30 at 17:07 By Continuing a Legacy of Successful Collaboration This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Trend Micro’s Pivotal Role in INTERPOL’s Operation Sentinel: Dismantling Digital Extortion Networks Across Africa Read More »

Get Executives on board with managing Cyber Risk

Get Executives on board with managing Cyber Risk 2025-12-30 at 17:07 By Learn how the 2025 Trend Micro Defenders Survey Report helps paint a clear picture of how security teams are looking to work with executive leaders to manage cyber risk. This article is an excerpt from Trend Micro Research, News and Perspectives View Original

Get Executives on board with managing Cyber Risk Read More »

What Does it Take to Manage Cloud Risk?

What Does it Take to Manage Cloud Risk? 2025-12-23 at 05:47 By Learn why hybrid and multi-cloud environments are vital for IT and business success from our 2025 Trend Micro Defenders Survey. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

What Does it Take to Manage Cloud Risk? Read More »

What Cyber Defenders Really Think About AI Risk

What Cyber Defenders Really Think About AI Risk 2025-12-19 at 17:05 By Learn how Trend Micro’s 2025 Trend Micro Defenders Survey Report highlights current AI-related cybersecurity priorities and where security professionals use AI to their advantage. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

What Cyber Defenders Really Think About AI Risk Read More »

SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like Tactics

SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like Tactics 2025-12-12 at 01:12 By In November, a targeted spear-phishing campaign was observed using Trend Micro-themed lures against various industries, but this was quickly detected and thwarted by the Trend Vision One™ platform. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like Tactics Read More »

CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation

CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation 2025-12-10 at 08:53 By CVE-2025-55182 is a CVSS 10.0 pre-authentication RCE affecting React Server Components. Amid the flood of fake Proof-of-concept exploits, scanners, exploits, and widespread misconceptions, this technical analysis intends to cut through the noise. This article is an excerpt from Trend Micro Research, News and

CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation Read More »

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security 2025-12-10 at 08:53 By The integration between Trend Vision One and Security Hub CSPM is exactly that, two powerful platforms enhancing each other to keep your AWS infrastructure protected. This article is an excerpt from Trend Micro Research, News and Perspectives View Original

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security Read More »

AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows

AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows 2025-12-08 at 13:58 By In this blog entry, Trend™ Research provides a comprehensive breakdown of GhostPenguin, a previously undocumented Linux backdoor with low detection rates that was discovered through AI-powered threat hunting and in-depth malware analysis. This article is an excerpt from Trend Micro Research, News

AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows Read More »

Critical React Server Components Vulnerability CVE-2025-55182: What Security Teams Need to Know

Critical React Server Components Vulnerability CVE-2025-55182: What Security Teams Need to Know 2025-12-06 at 17:06 By CVE-2025-55182 is a critical (CVSS 10.0) pre-authentication remote code execution vulnerability affecting React Server Components used in React.js, Next.js, and related frameworks (see the context section for a more exhaustive list of affected frameworks). This article is an excerpt

Critical React Server Components Vulnerability CVE-2025-55182: What Security Teams Need to Know Read More »

Project View: A New Era of Prioritized and Actionable Cloud Security

Project View: A New Era of Prioritized and Actionable Cloud Security 2025-12-05 at 18:30 By In today’s cloud-first world, security teams face an overwhelming flood of alerts, fragmented visibility, and reactive workflows. The complexity of modern cloud environments—spanning multi-cloud deployments, ephemeral assets, and decentralized ownership—demands a new approach to risk management. This article is an

Project View: A New Era of Prioritized and Actionable Cloud Security Read More »

ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading

ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading 2025-12-03 at 23:11 By Job seekers looking out for opportunities might instead find their personal devices compromised, as a ValleyRAT campaign propagated through email leverages Foxit PDF Reader for concealment and DLL side-loading for initial entry. This article is an excerpt from Trend

ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading Read More »

Scroll to Top