Trend Micro Research : Articles, News, Reports

Unraveling Water Saci’s New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp

Unraveling Water Saci’s New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp 2025-12-03 at 01:09 By Through AI-driven code conversion and a layered infection chain involving different file formats and scripting languages, the threat actors behind Water Saci are quickly upgrading their malware delivery and propagation methods across WhatsApp in Brazil. This article is an excerpt from […]

Unraveling Water Saci’s New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp Read More »

What’s your CNAPP maturity?

What’s your CNAPP maturity? 2025-12-02 at 04:53 By More and more enterprises are opting for cloud-native application protection platforms (CNAPPs) instead of complex and hard-to-manage cloud security point solutions. Find out where your organization is on its CNAPP maturity journey. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

What’s your CNAPP maturity? Read More »

Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems

Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems 2025-11-27 at 14:02 By Shai-hulud 2.0 campaign features a sophisticated variant capable of stealing credentials and secrets from major cloud platforms and developer services, while automating the backdooring of NPM packages maintained by victims. Its advanced tactics enable rapid, stealthy propagation across the software supply chain, putting

Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems Read More »

Trend & AWS Partner on Cloud IPS: One-Click Protection

Trend & AWS Partner on Cloud IPS: One-Click Protection 2025-11-20 at 08:46 By In the race to secure cloud infrastructure, intrusion prevention systems (IPS) remain one of the most critical yet complex at the cloud network layer of defense. For many organizations, deploying IPS in the cloud is a balancing act between agility and control.

Trend & AWS Partner on Cloud IPS: One-Click Protection Read More »

Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses

Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses 2025-11-18 at 14:14 By In this blog entry, Trend™ Research explores how ransomware actors are shifting their focus to cloud-based assets, including the tactics used to compromise business-critical data in AWS environments. This article is an excerpt from Trend Micro Research, News and

Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses Read More »

Increase in Lumma Stealer Activity Coincides with Use of Adaptive Browser Fingerprinting Tactics

Increase in Lumma Stealer Activity Coincides with Use of Adaptive Browser Fingerprinting Tactics 2025-11-13 at 21:17 By In this blog entry, Trend™ Research analyses the layered command-and-control approaches that Lumma Stealer uses to maintain its ongoing operations while enhancing collection of victim-environment data. This article is an excerpt from Trend Micro Research, News and Perspectives

Increase in Lumma Stealer Activity Coincides with Use of Adaptive Browser Fingerprinting Tactics Read More »

IBM Infrastructure: Continuous Risk & Compliance

IBM Infrastructure: Continuous Risk & Compliance 2025-11-12 at 02:00 By Learn all about AI-powered visibility, telemetry, and proactive security across mainframe, cloud, containers, and enterprise workloads. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

IBM Infrastructure: Continuous Risk & Compliance Read More »

How are you managing cloud risk?

How are you managing cloud risk? 2025-11-05 at 10:08 By Learn why managing cloud risk demands unified visibility, continuous risk assessment, and efficient security operations. Discover how a full-featured CNAPP like Trend Vision One™ Cloud Security enables organizations to move from reactive to proactive cloud protection. This article is an excerpt from Trend Micro Research,

How are you managing cloud risk? Read More »

AI Security: NVIDIA BlueField Now with Vision One™

AI Security: NVIDIA BlueField Now with Vision One™ 2025-10-29 at 05:48 By Launching at NVIDIA GTC 2025 – Transforming AI Security with Trend Vision One™ on NVIDIA BlueField This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

AI Security: NVIDIA BlueField Now with Vision One™ Read More »

Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C

Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C 2025-10-28 at 07:12 By Continuous investigation on the Water Saci campaign reveals innovative email-based C&C system, multi-vector persistence, and real-time command capabilities that allow attackers to orchestrate coordinated botnet operations, gather detailed campaign intelligence, and dynamically control malware activity across multiple infected

Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C Read More »

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques 2025-10-23 at 21:13 By Trend™ Research identified a sophisticated Agenda ransomware attack that deployed a Linux variant on Windows systems. This cross-platform execution can make detection challenging for enterprises. This article is an excerpt from Trend Micro Research, News and

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques Read More »

Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities

Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities 2025-10-22 at 01:10 By Trend Research examines the latest version of the Vidar stealer, which features a full rewrite in C, a multithreaded architecture, and several enhancements that warrant attention. Its timely evolution suggests that Vidar is positioning itself to occupy the space left

Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities Read More »

Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing

Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing 2025-10-16 at 17:45 By A targeted underground doxxing campaign exposed alleged core members of Lumma Stealer (Water Kurita), resulting in a sharp decline in its activity and a migration of customers to rival infostealer platforms. This article is an excerpt from Trend Micro

Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing Read More »

Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits

Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits 2025-10-15 at 23:22 By Trend™ Research has uncovered an attack campaign exploiting the Cisco SNMP vulnerability CVE-2025-20352, allowing remote code execution and rootkit deployment on unprotected devices, with impacts observed on Cisco 9400, 9300, and legacy 3750G series. This article is an excerpt from

Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits Read More »

Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access

Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access 2025-10-15 at 02:22 By Discover how Trend Vision One™ integrates with Zscaler to unify detection and access enforcement, accelerate threat containment, reduce dwell time, and deliver seamless Zero Trust protection for modern enterprises. This article is an excerpt from Trend Micro

Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access Read More »

Weaponized AI Assistants & Credential Thieves

Weaponized AI Assistants & Credential Thieves 2025-10-09 at 15:01 By Learn the state of AI and the NPM ecosystem with the recent s1ngularity’ weaponized AI for credential theft. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Weaponized AI Assistants & Credential Thieves Read More »

RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits

RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits 2025-10-09 at 15:01 By Trend™ Research and ZDI Threat Hunters have identified a large-scale RondoDox botnet campaign exploiting over 50 vulnerabilities across more than 30 vendors, including flaws first seen in Pwn2Own contests. This article is an excerpt from Trend Micro Research, News and Perspectives View Original

RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits Read More »

How Your AI Chatbot Can Become a Backdoor

How Your AI Chatbot Can Become a Backdoor 2025-10-08 at 17:54 By In this post of THE AI BREACH, learn how your Chatbot can become a backdoor. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

How Your AI Chatbot Can Become a Backdoor Read More »

CNAPP is the Solution to Multi-cloud Flexibility

CNAPP is the Solution to Multi-cloud Flexibility 2025-09-26 at 19:01 By Cloud-native application protection platform (CNAPP) not only helps organizations protect, but offers the flexibility of multi-cloud. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

CNAPP is the Solution to Multi-cloud Flexibility Read More »

This Is How Your LLM Gets Compromised

This Is How Your LLM Gets Compromised 2025-09-24 at 22:27 By Poisoned data. Malicious LoRAs. Trojan model files. AI attacks are stealthier than ever—often invisible until it’s too late. Here’s how to catch them before they catch you. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

This Is How Your LLM Gets Compromised Read More »

Scroll to Top