SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like Tactics
SHADOW-VOID-042 Targets Multiple Industries with Void Rabisu-like Tactics | Trend Micro (US) Content has been added to your Folio Go...
Trend Micro Research : Research
AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows
Threat hunting approach Our approach focused on collecting, processing, and analyzing a large number of malware samples from known and...
Critical React Server Components Vulnerability CVE-2025-55182: What Security Teams Need to Know
Main Takeaways:CVE-2025-55182 is a critical (CVSS 10.0) pre-authentication remote code execution vulnerability affecting React Server Components used in React.js, Next.js,...
ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading
Key takeaways ValleyRAT targets job seekers in a campaign spreading through email, disguising itself behind a weaponized Foxit PDF reader...
Unraveling Water Saci’s New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp
Unraveling Water Saci's New Multi-Format, AI-Enhanced Attacks Propagated via WhatsApp | Trend Micro (US) Content has been added to your...
Shai-hulud 2.0 Campaign Targets Cloud and Developer Ecosystems
Key takeaways: Shai-hulud 2.0 continues the first variant’s credential theft by stealing credentials and secrets from major cloud platforms as...
Breaking Down S3 Ransomware: Variants, Attack Paths and Trend Vision One™ Defenses
Potential cloud ransomware targets Ransomware actors increasingly focus on cloud-native assets that hold or enable quick recovery of critical business...
Active Water Saci Campaign Spreading Via WhatsApp Features Multi-Vector Persistence and Sophisticated C&C
In September 2022, Coyote emerged in Latin America through phishing campaigns, cleverly masking malicious ZIP archives as resume submissions. The...
Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques
Analysis of the embedded obfuscated JavaScript within these fake CAPTCHA pages revealed a multistage payload delivery system that initiated downloads...
The Rise of Collaborative Tactics Among China-aligned Cyber Espionage Campaigns
Type A – Shared infection vector (Loose coordination) This type involves the deployment of backdoors through web shells, exploitation of...
Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities
Conclusion As Lumma Stealer activity continues to decline and underground actors migrate to Vidar and StealC alternatives, security teams should...
Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing
Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing | Trend Micro (US) Content has been added...
Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits
Hides certain running-config items in memory (disabled by default). When enabled, the rootkit hides specified account names, EEM scripts, and...
RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits
RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits | Trend Micro (US) Content has been added to your Folio Go...
Weaponized AI Assistants & Credential Thieves
Weaponized AI Assistants & Credential Thieves | Trend Micro (US) Content has been added to your Folio Go to Folio...
