Research, News, and Perspectives

Compliance und Risiko

Trend Vision One™ Integration with AWS Security Hub CSPM: Unifying Cloud Security

The integration between Trend Vision One and Security Hub CSPM is exactly that, two powerful platforms enhancing each other to keep your AWS infrastructure protected.

How To Dec 10, 2025

Save to Folio

How To Dec 10, 2025

Save to Folio

Ausnutzung von Schwachstellen

CVE-2025-55182: React2Shell Analysis, Proof-of-Concept Chaos, and In-the-Wild Exploitation

CVE-2025-55182 is a CVSS 10.0 pre-authentication RCE affecting React Server Components. Amid the flood of fake Proof-of-concept exploits, scanners, exploits, and widespread misconceptions, this technical analysis intends to cut through the noise.

Latest News Dec 10, 2025

Save to Folio

Latest News Dec 10, 2025

Save to Folio

Wir reagieren nicht auf Wandel – wir gestalten ihn gemeinsam

Von Christina Decker, Director Strategic Channels Europe, Trend Micro

Expert Perspective Dec 09, 2025

Save to Folio

Expert Perspective Dec 09, 2025

Save to Folio

Cyberbedrohungen

AI-Automated Threat Hunting Brings GhostPenguin Out of the Shadows

In this blog entry, Trend™ Research provides a comprehensive breakdown of GhostPenguin, a previously undocumented Linux backdoor with low detection rates that was discovered through AI-powered threat hunting and in-depth malware analysis.

Latest News Dec 08, 2025

Save to Folio

Latest News Dec 08, 2025

Save to Folio

Ausnutzung von Schwachstellen

Critical React Server Components Vulnerability CVE-2025-55182: What Security Teams Need to Know

CVE-2025-55182 is a critical (CVSS 10.0) pre-authentication remote code execution vulnerability affecting React Server Components used in React.js, Next.js, and related frameworks (see the context section for a more exhaustive list of affected frameworks).

Research Dec 05, 2025

Save to Folio

Research Dec 05, 2025

Save to Folio

Cyberrisiken

Deutschland-Stack: Cybersicherheit muss strategischer Grundpfeiler sein

Der Deutschland-Stack repräsentiert Deutschlands ambitionierte Vision einer souveränen digitalen Verwaltung. Leider steht die Cybersicherheit dabei momentan noch zu wenig im Fokus.

Expert Perspective Dec 04, 2025

Save to Folio

Expert Perspective Dec 04, 2025

Save to Folio

Malware

Der KI-gestützte Innentäter

Cyberkriminelle interessieren sich immer mehr für Innentäter. Das Recruiting läuft dank KI und Social Media über Erpressung mit Deepfakes, Doxxing oder persönlichen Daten – Angeboten für „Straftaten als Dienstleistung“ sind keine Grenzen gesetzt.

Expert Perspective Dec 04, 2025

Save to Folio

Expert Perspective Dec 04, 2025

Save to Folio

Compliance und Risiko

Project View: A New Era of Prioritized and Actionable Cloud Security

In today's cloud-first world, security teams face an overwhelming flood of alerts, fragmented visibility, and reactive workflows. The complexity of modern cloud environments—spanning multi-cloud deployments, ephemeral assets, and decentralized ownership—demands a new approach to risk management.

How To Dec 04, 2025

Save to Folio

How To Dec 04, 2025

Save to Folio

Cyberbedrohungen

Shai-hulud 2.0 gegen Cloud- und Entwicklerökosysteme

Shai-hulud 2.0 nutzt eine ausgeklügelte Variante, die Anmeldedaten von großen Cloud-Plattformen und Entwicklerdiensten stiehlt und dank ihrer fortschrittlichen Taktiken sich schnell und unbemerkt in der gesamten Software-Lieferkette verbreiten kann.

Expert Perspective Dec 03, 2025

Save to Folio

Expert Perspective Dec 03, 2025

Save to Folio

Malware

ValleyRAT Campaign Targets Job Seekers, Abuses Foxit PDF Reader for DLL Side-loading

Job seekers looking out for opportunities might instead find their personal devices compromised, as a ValleyRAT campaign propagated through email leverages Foxit PDF Reader for concealment and DLL side-loading for initial entry.

Latest News Dec 03, 2025

Save to Folio

Latest News Dec 03, 2025

Save to Folio