Research, News, and Perspectives

Ransomware

Agenda Ransomware Deploys Linux Variant on Windows Systems Through Remote Management Tools and BYOVD Techniques

Trend™ Research identified a sophisticated Agenda ransomware attack that deployed a Linux variant on Windows systems. This cross-platform execution can make detection challenging for enterprises.

Latest News Oct 23, 2025

Save to Folio

Latest News Oct 23, 2025

Save to Folio

Cyber Threats

The Rise of Collaborative Tactics Among China-aligned Cyber Espionage Campaigns

Trend™ Research examines the complex collaborative relationship between China-aligned APT groups via the new “Premier Pass-as-a-Service” model, exemplified by the recent activities of Earth Estries and Earth Naga.

Research Oct 22, 2025

Save to Folio

Research Oct 22, 2025

Save to Folio

Cyber Threats

How Trend Micro Empowers the SOC with Agentic SIEM

By delivering both XDR leadership and Agentic SIEM innovation under one platform, Trend is redefining what security operations can be.

Consumer Focus Oct 21, 2025

Save to Folio

Consumer Focus Oct 21, 2025

Save to Folio

Malware

Fast, Broad, and Elusive: How Vidar Stealer 2.0 Upgrades Infostealer Capabilities

Trend™ Research examines the latest version of the Vidar stealer, which features a full rewrite in C, a multithreaded architecture, and several enhancements that warrant attention. Its timely evolution suggests that Vidar is positioning itself to occupy the space left after Lumma Stealer’s decline.

Research Oct 21, 2025

Save to Folio

Research Oct 21, 2025

Save to Folio

Malware

Shifts in the Underground: The Impact of Water Kurita’s (Lumma Stealer) Doxxing

A targeted underground doxxing campaign exposed alleged core members of Lumma Stealer (Water Kurita), resulting in a sharp decline in its activity and a migration of customers to rival infostealer platforms.

Research Oct 16, 2025

Save to Folio

Research Oct 16, 2025

Save to Folio

Exploits & Vulnerabilities

Operation Zero Disco: Attackers Exploit Cisco SNMP Vulnerability to Deploy Rootkits

Trend™ Research has uncovered an attack campaign exploiting the Cisco SNMP vulnerability CVE-2025-20352, allowing remote code execution and rootkit deployment on unprotected devices, with impacts observed on Cisco 9400, 9300, and legacy 3750G series.

Latest News Oct 15, 2025

Save to Folio

Latest News Oct 15, 2025

Save to Folio

Cyber Threats

Trend Micro launches new integration with Zscaler to deliver real-time, Risk-Based Zero Trust Access

Discover how Trend Vision One™ integrates with Zscaler to unify detection and access enforcement, accelerate threat containment, reduce dwell time, and deliver seamless Zero Trust protection for modern enterprises.

Security Strategies Oct 14, 2025

Save to Folio

Security Strategies Oct 14, 2025

Save to Folio

Cyber Threats

RondoDox: From Targeting Pwn2Own Vulnerabilities to Shotgunning Exploits

Trend™ Research and ZDI Threat Hunters have identified a large-scale RondoDox botnet campaign exploiting over 50 vulnerabilities across more than 30 vendors, including flaws first seen in Pwn2Own contests.

Latest News Oct 09, 2025

Save to Folio

Latest News Oct 09, 2025

Save to Folio

APT & Targeted Attacks

Weaponized AI Assistants & Credential Thieves

Learn the state of AI and the NPM ecosystem with the recent s1ngularity' weaponized AI for credential theft.

Research Oct 09, 2025

Save to Folio

Research Oct 09, 2025

Save to Folio

Artificial Intelligence (AI)

How Your AI Chatbot Can Become a Backdoor

In this post of THE AI BREACH, learn how your Chatbot can become a backdoor.

Research Oct 08, 2025

Save to Folio

Research Oct 08, 2025

Save to Folio