Tag: Trend Micro Research, News and Perspectives

This blog discusses the steganography, cloud abuse, and email-based backdoors used against the Ukrainian defense supply chain in the latest Pawn Storm campaign that TrendAI™ Research observed and analyzed. This article has been indexed from Trend Micro Research, News and Perspectives Read the original…

Read more →

We look into a stealthy multi‑stage attack campaign that delivers PureLog Stealer entirely in memory using encrypted, fileless techniques. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Copyright Lures Mask a Multi‑Stage…

Read more →

Not every cloud breach starts with malware or a zero-day. In this incident, attackers discovered an exposed Spring Boot Actuator endpoint, harvested credentials from leaked configuration data, then used the OAuth2 Resource Owner Password Credentials (ROPC) flow to authenticate without…

Read more →

Learn how east-west traffic visibility helps detect and stop lateral movement attacks inside electric grid infrastructure and critical OT networks. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Why East-West Visibility Matters…

Read more →

Warlock continues to enhance its attack chain with new tactics to improve persistence, lateral movement, and defense evasion using an expanded toolset: TightVNC Yuze, and a persistent BYOVD technique leveraging the NSec driver. This article has been indexed from Trend…

Read more →

Learn about OpenClaw (a sovereign agent) and how this can be viable for enterprises. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: CISOs in a Pinch: A Security Analysis of OpenClaw

Read more →

At [un]prompted 2026, TrendAI™ demonstrated how documents can be used to exploit AI-driven KYC pipelines and introduced FENRIR, an automated system for discovering AI vulnerabilities at scale. This article has been indexed from Trend Micro Research, News and Perspectives Read…

Read more →

The BoryptGrab campaign uses fake SEO‑optimized GitHub repositories and deceptive download pages to distribute a data‑stealing malware family that delivers multiple payloads, including a reverse SSH backdoor, to Windows users. This article has been indexed from Trend Micro Research, News…

Read more →

Tycoon 2FA was dismantled this week by law enforcement and industry partners including TrendAI™. The phishing-as-a-service platform offered MFA bypass services using adversary-in-the-middle (AitM) proxying. This article has been indexed from Trend Micro Research, News and Perspectives Read the original…

Read more →

Learn how Claude Code Security set Cybersecurity stocks on fire. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: CISOs in a Pinch: A Security Analysis of OpenClaw

Read more →

Malicious OpenClaw skills trick AI agents and users into installing a new AMOS variant that steals extensive data at scale. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Malicious OpenClaw Skills Used…

Read more →

We uncover how a campaign used Atlassian Jira Cloud to launch automated and targeted spam campaigns, exploiting trusted SaaS workflows to bypass security controls. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article:…

Read more →

Discover why Government and Education must prioritize Cyber Risk Management. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: U.S. Public Sector Under Siege

Read more →

PeckBirdy is a sophisticated JScript-based C&C framework used by China-aligned APT groups to exploit LOLBins across multiple environments, delivering advanced backdoors to target gambling industries and Asian government entities. This article has been indexed from Trend Micro Research, News and…

Read more →

TrendAI™ Research provides a technical analysis of a compromised EmEditor installer used to deliver multistage malware that performs a range of malicious actions. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Watering…

Read more →

This blog entry provides an in-depth analysis of the multistage delivery of the Evelyn information stealer, which was used in a campaign targeting software developers. This article has been indexed from Trend Micro Research, News and Perspectives Read the original…

Read more →

The “bigger is better” era of AI is hitting a wall. We are in an LLM bubble, characterized by ruinous inference costs and diminishing returns. The future belongs to Agentic AI powered by specialized Small Language Models (SLMs). Think of…

Read more →

TrendAI™’s ÆSIR platform combines AI automation with expert oversight to discover zero-day vulnerabilities in AI infrastructure – 21 CVEs across NVIDIA, Tencent, and MLflow since mid-2025. This article has been indexed from Trend Micro Research, News and Perspectives Read the…

Read more →

This blog discusses notable modern TTPs observed from SHADOW-AETHER-015 and Earth Preta, from Trend Research™ monitoring and Trend Vision One™ intelligence. These findings support the performance of TrendAI™ in the 2025 MITRE ATT&CK Evaluations. This article has been indexed from…

Read more →

Threat actors exploited Cloudflare’s free-tier infrastructure and legitimate Python environments to deploy the AsyncRAT remote access trojan, demonstrating advanced evasion techniques that abuse trusted cloud services for malicious operations. This article has been indexed from Trend Micro Research, News and…

Read more →