Trend Micro Research : Ransomware

U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026

U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026 2026-04-10 at 12:11 By The first quarter of 2026 has reinforced a hard truth: U.S. government agencies and educational institutions are operating in the most hostile cyber threat environment ever recorded. This article is an excerpt from Trend Micro Research, News and Perspectives View Original […]

U.S. Public Sector Under Siege: Threat Intelligence for Q1 2026 Read More »

Web Shells, Tunnels, and Ransomware: Dissecting a Warlock Attack

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Cyber Threats, Trend Micro Research : Latest News, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Web Shells, Tunnels, and Ransomware: Dissecting a Warlock Attack 2026-03-16 at 15:10 By Warlock continues to enhance its attack chain with new tactics to improve persistence, lateral movement, and defense evasion using an expanded toolset: TightVNC Yuze, and a persistent BYOVD technique leveraging the NSec driver. This article is an excerpt from Trend Micro Research,

Web Shells, Tunnels, and Ransomware: Dissecting a Warlock Attack Read More »

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security 2025-12-10 at 08:53 By The integration between Trend Vision One and Security Hub CSPM is exactly that, two powerful platforms enhancing each other to keep your AWS infrastructure protected. This article is an excerpt from Trend Micro Research, News and Perspectives View Original

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security Read More »

What’s your CNAPP maturity?

What’s your CNAPP maturity? 2025-12-02 at 04:53 By More and more enterprises are opting for cloud-native application protection platforms (CNAPPs) instead of complex and hard-to-manage cloud security point solutions. Find out where your organization is on its CNAPP maturity journey. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

What’s your CNAPP maturity? Read More »

Trend & AWS Partner on Cloud IPS: One-Click Protection

Trend & AWS Partner on Cloud IPS: One-Click Protection 2025-11-20 at 08:46 By In the race to secure cloud infrastructure, intrusion prevention systems (IPS) remain one of the most critical yet complex at the cloud network layer of defense. For many organizations, deploying IPS in the cloud is a balancing act between agility and control.

Trend & AWS Partner on Cloud IPS: One-Click Protection Read More »

Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses 2025-11-18 at 14:14 By In this blog entry, Trend™ Research explores how ransomware actors are shifting their focus to cloud-based assets, including the tactics used to compromise business-critical data in AWS environments. This article is an excerpt from Trend Micro Research, News and

Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses Read More »

How are you managing cloud risk?

How are you managing cloud risk? 2025-11-05 at 10:08 By Learn why managing cloud risk demands unified visibility, continuous risk assessment, and efficient security operations. Discover how a full-featured CNAPP like Trend Vision One™ Cloud Security enables organizations to move from reactive to proactive cloud protection. This article is an excerpt from Trend Micro Research,

How are you managing cloud risk? Read More »

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Latest News, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques 2025-10-23 at 21:13 By Trend™ Research identified a sophisticated Agenda ransomware attack that deployed a Linux variant on Windows systems. This cross-platform execution can make detection challenging for enterprises. This article is an excerpt from Trend Micro Research, News and

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques Read More »

New LockBit 5.0 Targets Windows, Linux, ESXi

Trend Micro Research : Latest News, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

New LockBit 5.0 Targets Windows, Linux, ESXi 2025-09-25 at 21:26 By Trend™ Research analyzed source binaries from the latest activity from notorious LockBit ransomware with their 5.0 version that exhibits advanced obfuscation, anti-analysis techniques, and seamless cross-platform capabilities for Windows, Linux, and ESXi systems. This article is an excerpt from Trend Micro Research, News and

New LockBit 5.0 Targets Windows, Linux, ESXi Read More »

Unmasking The Gentlemen Ransomware: Tactics, Techniques, and Procedures Revealed

Trend Micro Research : APT & Targeted Attacks, Trend Micro Research : Articles, News, Reports, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Unmasking The Gentlemen Ransomware: Tactics, Techniques, and Procedures Revealed 2025-09-09 at 13:08 By An analysis of the Gentlemen ransomware group, which employs advanced, adaptive tactics, techniques, and procedure to target critical industries worldwide. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Unmasking The Gentlemen Ransomware: Tactics, Techniques, and Procedures Revealed Read More »

Warlock: From SharePoint Vulnerability Exploit to Enterprise Ransomware

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Warlock: From SharePoint Vulnerability Exploit to Enterprise Ransomware 2025-08-20 at 19:25 By Warlock ransomware exploits unpatched Microsoft SharePoint vulnerabilities to gain access, escalate privileges, steal credentials, move laterally, and deploy ransomware with data exfiltration across enterprise environments. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Warlock: From SharePoint Vulnerability Exploit to Enterprise Ransomware Read More »

Crypto24 Ransomware Group Blends Legitimate Tools with Custom Malware for Stealth Attacks

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Cyber Threats, Trend Micro Research : Exploits & Vulnerabilities, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Crypto24 Ransomware Group Blends Legitimate Tools with Custom Malware for Stealth Attacks 2025-08-14 at 11:38 By Crypto24 is a ransomware group that stealthily blends legitimate tools with custom malware, using advanced evasion techniques to bypass security and EDR technologies. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Crypto24 Ransomware Group Blends Legitimate Tools with Custom Malware for Stealth Attacks Read More »

New Ransomware Charon Uses Earth Baxia APT Techniques to Target Enterprises

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

New Ransomware Charon Uses Earth Baxia APT Techniques to Target Enterprises 2025-08-12 at 13:10 By We uncovered Charon, a new ransomware strainfamily that uses advanced APT-style techniques, including DLL sideloading, process injection, and anti-EDR capabilities, to target organizations with customized ransom demands. This article is an excerpt from Trend Micro Research, News and Perspectives View

New Ransomware Charon Uses Earth Baxia APT Techniques to Target Enterprises Read More »

New Ransomware Charon Uses Earth Baxia APT Techniques To Target Enterprises

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

New Ransomware Charon Uses Earth Baxia APT Techniques To Target Enterprises 2025-08-12 at 13:10 By We uncovered Charon, a new ransomware strainfamily that uses advanced APT-style techniques, including DLL sideloading, process injection, and anti-EDR capabilities, to target organizations with customized ransom demands. This article is an excerpt from Trend Micro Research, News and Perspectives View

New Ransomware Charon Uses Earth Baxia APT Techniques To Target Enterprises Read More »

Gunra Ransomware Group Unveils Efficient Linux Variant

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Latest News, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Gunra Ransomware Group Unveils Efficient Linux Variant 2025-07-29 at 15:02 By This blog discusses how Gunra ransomware’s new Linux variant accelerates and customizes encryption, expanding the group’s reach with advanced cross-platform tactics. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Gunra Ransomware Group Unveils Efficient Linux Variant Read More »

BERT Ransomware Group Targets Asia and Europe on Multiple Platforms

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Ransomware / SecurityTicks

BERT Ransomware Group Targets Asia and Europe on Multiple Platforms 2025-07-07 at 14:47 By BERT is a newly emerged ransomware group that pairs simple code with effective execution—carrying out attacks across Europe and Asia. In this entry, we examine the group’s tactics, how their variants have evolved, and the tools they use to get past

BERT Ransomware Group Targets Asia and Europe on Multiple Platforms Read More »

Agenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their Arsenal

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Agenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their Arsenal 2025-05-07 at 11:48 By During our monitoring of Agenda ransomware activities, we uncovered campaigns that made use of the SmokeLoader malware and a new loader we’ve named NETXLOADER. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

Agenda Ransomware Group Adds SmokeLoader and NETXLOADER to Their Arsenal Read More »

FOG Ransomware Spread by Cybercriminals Claiming Ties to DOGE

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

FOG Ransomware Spread by Cybercriminals Claiming Ties to DOGE 2025-04-21 at 05:11 By This blog details our investigation of malware samples that conceal within them a FOG ransomware payload. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

FOG Ransomware Spread by Cybercriminals Claiming Ties to DOGE Read More »

CrazyHunter Campaign Targets Taiwanese Critical Sectors

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

CrazyHunter Campaign Targets Taiwanese Critical Sectors 2025-04-16 at 11:55 By This blog entry details research on emerging ransomware group CrazyHunter, which has launched a sophisticated campaign aimed at Taiwan’s essential services. This article is an excerpt from Trend Micro Research, News and Perspectives View Original Source

CrazyHunter Campaign Targets Taiwanese Critical Sectors Read More »

Albabat Ransomware Group Potentially Expands Targets to Multiple OS, Uses GitHub to Streamline Operations

Trend Micro Research : Articles, News, Reports, Trend Micro Research : Endpoints, Trend Micro Research : Ransomware, Trend Micro Research : Research / SecurityTicks

Albabat Ransomware Group Potentially Expands Targets to Multiple OS, Uses GitHub to Streamline Operations 2025-03-21 at 11:36 By Trend Research encounters new versions of the Albabat ransomware, which appears to target Windows, Linux, and macOS devices. We also reveal the group’s use of GitHub to streamline their ransomware operation. This article is an excerpt from

Albabat Ransomware Group Potentially Expands Targets to Multiple OS, Uses GitHub to Streamline Operations Read More »