News & Updates

The lack of encryption and authentication mechanisms in the GTP-U protocol between base stations and 5GC UPFs could allow cybercriminals to use a packet reflection vulnerability to carry out attacks on 5G devices in internal networks.

This article gives an overview of the elements of virtual kidnapping and how malicious actors use social engineering tactics and abuse AI voice cloning tools and ChatGPT to launch these attacks.

This article, the first of a two-part series, provides insights on how abusers and cybercriminals use residential proxies and CAPTCHA-solving services to enable bots, scrapers, and stuffers, and proposes security countermeasures for organizations.

This report delves into the nature of pig-butchering scams, how scammers carry out their operations, the new pig-butchering tactics we’ve observed in the wild, and what individuals can do to avoid falling for these fraudulent investments and dealing with massive amounts of debt.

We detail everything you need to know about TargetCompany, a ransomware family with different monickers, including the evolution of its attack flow as it cemented its place in the threat landscape.

This report provides an overview of the notable email threats of the past year to help organizations better understand the ever-changing threat landscape. We detail the top email threats of 2022, including the 39.9 million high-risk email threats that we detected using the Trend Micro Cloud App Security platform, a security solution that supplements email providers’ built-in security.

In this feature, we look at how the prompt investigation of warning signs can help block possible major cyberattacks. We also detail the specific security gaps of one organization that can serve as a cautionary tale for other businesses to constantly secure their systems against ransomware attacks.

We explore three differently sized criminal groups to determine how they compare to similarly sized legitimate businesses in terms of how they are organized. We also discuss the advantages of knowing the size of a target criminal organization for cybercrime investigators.

The zero trust security model, which assumes that everything and everyone is a potential threat, is an approach to security that is becoming increasingly popular, especially in and for cloud-native environments.