

Hijacking Your Bandwidth: How Proxyware Apps Open You Up to Risk
In this investigation, we analyzed several prominent "passive income" applications and found out that there may be security risks upon participating in these programs.
In 2023, cybercriminals and defenders alike will have to move forward with caution in the face of a business landscape that’s fraught with security blindsides and economic ebbs and flows.
In this investigation, we analyzed several prominent "passive income" applications and found out that there may be security risks upon participating in these programs.
The security vendor community is often criticised for over-hyping the cyber threat to organisations in order to sell more products. While there may sometimes be a kernel of truth to these allegations, a new report from the World Economic Forum (WEF) paints an arguably more alarming picture still. Nearly all (93%) cyber and most (86%) business leaders polled for the report believe global geopolitical instability will “moderately or very likely” lead to a “catastrophic cyber event” in the next two years.
Trend Micro named one of 2023’s coolest cloud security companies
We look into an ongoing malware campaign we named TgToxic, targeting Android mobile users in Taiwan, Thailand, and Indonesia since July 2022. The malware steals users’ credentials and assets such as cryptocurrency from digital wallets, as well as money from bank and finance apps. Analyzing the automated features of the malware, we found that the threat actor abused legitimate test framework Easyclick to write a Javascript-based automation script for functions such as clicks and gestures.
We analyze an infection campaign targeting organizations in the Middle East for cyberespionage in December 2022 using a new backdoor malware. The campaign abuses legitimate but compromised email accounts to send stolen data to external mail accounts controlled by the attackers.
Although digital natives probably realise it, the internet is a mind-blowing tool for a young person. It delivers everything they need to learn, play, share their experiences and communicate with friends and family, wherever they are in the world. But alongside all this good there are also risks.
We analyze a BEC campaign targeting large companies around the world that was leveraging open-source tools to stay under the radar.
Stay informed and stay ahead
Amid the cut and thrust of daily working life, it’s easy for employers to forget that their staff are individuals, with their own thoughts, ideas and aspirations. Too often we’re treated as just another cog in the corporate machine. That was certainly my experience of work, until arriving at Trend Micro.
Trend Micro researchers discovered a new ransomware that abuses the APIs of a legitimate tool called Everything, a Windows filename search engine developed by Voidtools that offers quick searching and real-time updates for minimal resource usage.