Tag: Trend Micro Research, News and Perspectives

The Instructure Canvas breach affects universities, K–12 school districts, and teaching hospitals globally. This blog entry intends to provide context and practical guidance. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: What…

Read more →

A deeper look at the first three pillars and outlining how our capabilities directly support government agencies working to bring this strategy to life. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article:…

Read more →

Targeting multiple industries worldwide, the InstallFix campaign uses fake Claude AI installer pages to trick users into running malware that collects system information, disables security features, achieves persistence, and connects to attacker-controlled C&C servers for additional payloads. This article has…

Read more →

TrendAI™ Research breaks down Quasar Linux (QLNX), a previously undocumented sophisticated Linux RAT with low detection rates. In this blog, we examine a full-featured Linux threat incorporating a rootkit, a PAM backdoor, credential harvesting, and more, revealing how this malware…

Read more →

Bad actors took advantage of the legitimate name and services of Kuse, a popular AI-based app designed for workplaces. The attackers exploited the users’ trust in Kuse to carry out a phishing attack. This article has been indexed from Trend…

Read more →

Our research on Void Dokkaebi’s operations uncovered a campaign that turns infected developer repositories into malware delivery channels. By spreading through trusted workflows, organizational codebases, and open-source projects, the threat can scale from a single compromise to a broader supply…

Read more →

Enterprises aiming to predict and mitigate human, machine, and AI‑agent risks at scale demand AI‑powered identity‑first security without compromise. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Identity Protection in the AI…

Read more →

The first quarter of 2026 has reinforced a hard truth: U.S. government agencies and educational institutions are operating in the most hostile cyber threat environment ever recorded. This article has been indexed from Trend Micro Research, News and Perspectives Read…

Read more →

Threat actors leveraged Anthropic’s Claude Code npm release packaging error to distribute Vidar, GhostSocks, and PureLog Stealer. This blog details immediate steps organizations can take and best practices to prevent further risk. This article has been indexed from Trend Micro Research, News…

Read more →

A packaging error in Anthropic’s Claude Code npm release briefly exposed internal source code. This entry examines how threat actors rapidly weaponized the resulting attention, pivoting an existing AI-themed campaign to spread Vidar and GhostSocks. This article has been indexed…

Read more →

TrendAI reviews the White House National Cyber Strategy, outlining six pillars to strengthen U.S. cybersecurity—from deterrence and regulation to federal modernization, critical infrastructure protection, AI leadership, and workforce development. This article has been indexed from Trend Micro Research, News and…

Read more →

TrendAI™ Research explored agentic AI cybercrime and EV infrastructure security through two research sessions at RSAC 2026. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: TrendAI™ Research at RSAC 2026: Advancing Defense…

Read more →

Moving beyond their LiteLLM campaign, TeamPCP weaponizes the Telnyx Python SDK with stealthy WAV‑based payloads to steal credentials across Linux, macOS, and Windows. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: TeamPCP’s…

Read more →

This blog discusses the steganography, cloud abuse, and email-based backdoors used against the Ukrainian defense supply chain in the latest Pawn Storm campaign that TrendAI™ Research observed and analyzed. This article has been indexed from Trend Micro Research, News and Perspectives Read the original…

Read more →

We look into a stealthy multi‑stage attack campaign that delivers PureLog Stealer entirely in memory using encrypted, fileless techniques. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Copyright Lures Mask a Multi‑Stage…

Read more →

Not every cloud breach starts with malware or a zero-day. In this incident, attackers discovered an exposed Spring Boot Actuator endpoint, harvested credentials from leaked configuration data, then used the OAuth2 Resource Owner Password Credentials (ROPC) flow to authenticate without…

Read more →

Learn how east-west traffic visibility helps detect and stop lateral movement attacks inside electric grid infrastructure and critical OT networks. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: Why East-West Visibility Matters…

Read more →

Warlock continues to enhance its attack chain with new tactics to improve persistence, lateral movement, and defense evasion using an expanded toolset: TightVNC Yuze, and a persistent BYOVD technique leveraging the NSec driver. This article has been indexed from Trend…

Read more →

Learn about OpenClaw (a sovereign agent) and how this can be viable for enterprises. This article has been indexed from Trend Micro Research, News and Perspectives Read the original article: CISOs in a Pinch: A Security Analysis of OpenClaw

Read more →

At [un]prompted 2026, TrendAI™ demonstrated how documents can be used to exploit AI-driven KYC pipelines and introduced FENRIR, an automated system for discovering AI vulnerabilities at scale. This article has been indexed from Trend Micro Research, News and Perspectives Read…

Read more →