Trend Research analyzed SocGholish’s MaaS framework and its role in deploying RansomHub ransomware through compromised websites, using highly obfuscated JavaScript loaders to evade detection and execute various malicious tasks.

Trend Micro Simply Security

14.03.2025

Exploiting DeepSeek-R1: Breaking Down Chain of Thought Security | Trend Micro (US)

This entry explores how the Chain of Thought reasoning in the DeepSeek-R1 AI model can be susceptible to prompt attacks, insecure output generation and sensitive data theft.

Trend Micro Simply Security

11.03.2025

AI Assisted Fake GitHub Repositories Fuel SmartLoader and LummaStealer Distribution | Trend Micro (US)

In this blog entry, we uncovered a campaign that uses fake GitHub repositories to distribute SmartLoader, which is then used to deliver Lumma Stealer and other malicious payloads. The campaign leverages GitHub’s trusted reputation to evade detection, using AI-generated content to make fake repositories appear legitimate.

Trend Micro Simply Security

05.03.2025

From Event to Insight Unpacking a B2B Business Email Compromise BEC Scenario | Trend Micro (US)

Trend Micro™ Managed XDR assisted in an investigation of a B2B BEC attack that unveiled an entangled mesh weaved by the threat actor with the help of a compromised server, ensnaring three business partners in a scheme that spanned for days. This article features investigation insights, a proposed incident timeline, and recommended security practices.

Trend Micro Simply Security

04.03.2025

CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks | Trend Micro (US)

The ZDI team offers an analysis of how CVE-2025-0411, a zero-day vulnerability in 7-Zip was actively exploited to target Ukrainian organizations through spear-phishing and homoglyph attacks.

Trend Micro Simply Security

20.02.2025

Updated Shadowpad Malware Leads to Ransomware Deployment | Trend Micro (US)

In this blog entry, we discuss how Shadowpad is being used to deploy a new undetected ransomware family. Attackers deploy the malware by exploiting weak passwords and bypassing multi-factor authentication.

Trend Micro Simply Security

19.02.2025

Chinese-Speaking Group Manipulates SEO with BadIIS | Trend Micro (US)

This blog post details our analysis of an SEO manipulation campaign targeting Asia. We also share recommendations that can help enterprises proactively secure their environment.

Trend Micro Simply Security

03.02.2025

Native Sensors vs. Integrations for XDR Platforms? | Trend Micro (US)

Optimize your cybersecurity strategy by understanding the advantages and limitations of native sensors vs. third-party integrations in XDR platforms.

Trend Micro Simply Security

01.02.2025

Future of Cybersecurity: Will XDR Absorb SIEM & SOAR? | Trend Micro (US)

XDR is reshaping cybersecurity by unifying and enhancing SIEM and SOAR capabilities into a single platform. It addresses alert fatigue, simplifies operations, and improves efficiency for SOC teams.

Trend Micro Simply Security

31.01.2025

NDR: Not Just a "Nice to Have" Anymore | Trend Micro (US)

Network Detection and Response (NDR) is no longer a 'nice-to-have'—it’s essential. Explore how NDR complements EDR, speeds incident response, and provides unmatched visibility, making it a critical tool for modern cybersecurity strategies and service providers.

Trend Micro Simply Security

30.01.2025

Lumma Stealer’s GitHub-Based Delivery Explored via Managed Detection and Response | Trend Micro (US)

The Managed XDR team investigates a sophisticated campaign distributing Lumma Stealer through GitHub, where attackers leveraged the platform's release infrastructure to deliver malware such as SectopRAT, Vidar, and Cobeacon.

Trend Micro Simply Security

30.01.2025

ASRM: A New Pillar for Cyber Insurance Underwriting | Trend Micro (US)

Explore how Attack Surface Risk Management (ASRM) transforms cyber insurance underwriting by integrating real-time risk assessment, advanced detection technologies and proactive mitigation strategies to improve accuracy, reduce claims, and build trust.

Trend Micro Simply Security

24.01.2025

Trend Micro and CISA Secure-By-Design Pledge | Trend Micro (US)

Get the details of Trend's pledge to abide by CISA's standards of security.

Trend Micro Simply Security

23.01.2025

Invisible Prompt Injection: A Threat to AI Security | Trend Micro (US)

Learn about invisible prompt injection, which is a silent threat to secure AI.

Trend Micro Simply Security

21.01.2025

World Tour Survey: Cloud Engineers Wrestle with Risk | Trend Micro (US)

Trend surveyed 750 cybersecurity professionals in 49 countries to learn more about the state of cybersecurity - learn the findings.

Trend Micro Simply Security

17.01.2025

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024 | Trend Micro (US)

Since the end of 2024, we have been continuously monitoring large-scale DDoS attacks orchestrated by an IoT botnet exploiting vulnerable IoT devices such as wireless routers and IP cameras.

Trend Micro Simply Security

15.01.2025

Investigating A Web Shell Intrusion With Trend Micro™ Managed XDR | Trend Micro (US)

This blog discusses a web shell intrusion incident where attackers abused the IIS worker to exfiltrate stolen data.

Trend Micro Simply Security

10.01.2025

How Cracks and Installers Bring Malware to Your Device | Trend Micro (US)

Our research shows attackers use platforms like YouTube to spread fake installers via trusted hosting services, employing encryption to evade detection and steal sensitive browser data.

Trend Micro Simply Security

09.01.2025

Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit | Trend Micro (US)

Our blog entry discusses a fake PoC exploit for LDAPNightmare (CVE-2024-49113) that is being used to distribute information-stealing malware.

Trend Micro Simply Security

08.01.2025

Trend Container Security Detection Maps MITRE ATT&CK | Trend Micro (US)

Learn how Trend is mapping its container security detection capabilities to the MITRE ATT&CK framework for Containers.

Trend Micro Simply Security

08.01.2025

Ultimate AWS re:Invent 2024 Recap | Trend Micro (US)

Explore Trend Micro’s ultimate recap of the latest generative AI advancements and innovative cloud technology breakthroughs from AWS re:Invent 2024.

Trend Micro Simply Security

04.01.2025

AI Pulse: Top AI Trends from 2024 - A Look Back | Trend Micro (US)

In this edition of AI Pulse, let's look back at top AI trends from 2024 in the rear view so we can more clearly predicts AI trends for 2025 and beyond.

Trend Micro Simply Security

20.12.2024

FedRAMP® ATO Boosts Zero Trust for Federal Agencies | Trend Micro (US)

Learn how Trend Vision One™ for Government is helping agencies leverage the best threat intelligence for enhanced visibility and security to meet zero trust standards.

Trend Micro Simply Security

17.12.2024

Link Trap: GenAI Prompt Injection Attack | Trend Micro (US)

Learn about one GenAI prompt injection attack threat that could put your sensitive data at risk.

Trend Micro Simply Security

12.12.2024

INTERPOL & Trend's Fight Against Cybercrime | Trend Micro (US)

Learn about INTERPOL & Trend's collaborative effort against cybercrime.

Trend Micro Simply Security

12.12.2024

MITRE ATT&CK 2024 Results for Enterprise Security | Trend Micro (US)

Get the 2024 MITRE ATT&CK evaluation results for enterprise security to see how Trend Micro stacks up.

Trend Micro Simply Security

05.12.2024

The Road to Agentic AI: Exposed Foundations | Trend Micro (US)

Our research into Retrieval Augmented Generation (RAG) systems uncovered at least 80 unprotected servers. We highlight this problem, which can lead to potential data loss and unauthorized access.

Trend Micro Simply Security

05.12.2024

AI Configuration Best Practices for Better AI Security | Trend Micro (US)

Learn best practices for AI configuration in order to have better AI security.

Trend Micro Simply Security

04.12.2024

World Tour Survey: IT Operations’ Hands-on Defense | Trend Micro (US)

Trend surveyed 750 cybersecurity professionals in 49 countries to learn more about the state of cybersecurity - learn the findings on IT ops.

Trend Micro Simply Security

03.12.2024

Gafgyt Malware Targeting Docker Remote API Servers | Trend Micro (US)

Our researchers identified threat actors exploiting misconfigured Docker servers to spread the Gafgyt malware. This threat traditionally targets IoT devices; this new tactic signals a change in its behavior.

Trend Micro Simply Security

03.12.2024

AI Pulse: The Good from AI and the Promise of Agentic | Trend Micro (US)

AI Pulse is a new blog series by Trend Micro, catch up on the latest news and good security outcomes from AI in the sixth of this series.

Trend Micro Simply Security

26.11.2024

Guess Who’s Back - The Return of ANEL in the Recent Earth Kasha Spear-phishing Campaign in 2024 | Trend Micro (US)

Trend Micro has identified a spear-phishing campaign active in Japan since June 2024. Evidence about the malware used by this campaign suggests this was part of a new operation by Earth Kasha.

Trend Micro Simply Security

19.11.2024

Spot the Difference: Earth Kasha's New LODEINFO Campaign And The Correlation Analysis With The APT10 Umbrella | Trend Micro (US)

LODEINFO is a malware used in attacks targeting mainly Japan since 2019. Trend Micro has been tracking the group as Earth Kasha. We have identified a new campaign connected to this group with significant updates to their strategy, tactics, and arsenals.

Trend Micro Simply Security

09.11.2024

Breaking Down Earth Estries Persistent TTPs in Prolonged Cyber Operations | Trend Micro (US)

Discover how Earth Estries employs diverse tactics, techniques, and tools, including malware such as Zingdoor and Snappybee, for its campaigns.

Trend Micro Simply Security

05.11.2024

SOC Around the Clock: World Tour Survey Findings | Trend Micro (US)

Trend surveyed 750 cybersecurity professionals in 49 countries to learn more about the state of cybersecurity.

Trend Micro Simply Security

01.11.2024

AI Pulse: Election Deepfakes, Disasters, Scams & more | Trend Micro (US)

AI Pulse is a new blog series by Trend Micro, catch up on the latest news in AI election deepfakes in the fifth post of this series.

Trend Micro Simply Security

24.10.2024

Understanding the Initial Stages of Web Shell and VPN Threats An MXDR Analysis | Trend Micro (US)

While cyberattacks that employ web shells and VPN compromise are not particularly novel, they are still prevalent. The recent incidents that Trend Micro MXDR analyzed highlight the importance of behavioral analysis and anomaly detection in security measures.

Trend Micro Simply Security

24.10.2024

Unmasking Prometei A Deep Dive Into Our MXDR Findings | Trend Micro (US)

How does Prometei insidiously operate in a compromised system? This Managed Extended Detection and Response investigation conducted with the help of Trend Vision One provides a comprehensive analysis of the inner workings of this botnet so users can stop the threat in its tracks before it inflicts damage to the system.

Trend Micro Simply Security

22.10.2024

Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East | Trend Micro (US)

Trend Micro's investigation into the recent activity of Earth Simnavaz provides new insights into the APT group’s evolving tactics and the immediate threat it poses to sectors in the Middle East.

Trend Micro Simply Security

19.10.2024

Gartner® 2024 CNAPP Market Guide Insights for Leaders | Trend Micro (US)

Cybersecurity leaders, read Trend Micro's insights based on Garner's 2024 Market Guide.

home›Trend Micro Simply Security›Software

Trend Micro Simply Security - Software

SocGholishs Intrusion Techniques Facilitate Distribution of RansomHub Ransomware | Trend Micro (US)

Exploiting DeepSeek-R1: Breaking Down Chain of Thought Security | Trend Micro (US)

AI Assisted Fake GitHub Repositories Fuel SmartLoader and LummaStealer Distribution | Trend Micro (US)

From Event to Insight Unpacking a B2B Business Email Compromise BEC Scenario | Trend Micro (US)

CVE-2025-0411: Ukrainian Organizations Targeted in Zero-Day Campaign and Homoglyph Attacks | Trend Micro (US)

Updated Shadowpad Malware Leads to Ransomware Deployment | Trend Micro (US)

Chinese-Speaking Group Manipulates SEO with BadIIS | Trend Micro (US)

Native Sensors vs. Integrations for XDR Platforms? | Trend Micro (US)

Future of Cybersecurity: Will XDR Absorb SIEM & SOAR? | Trend Micro (US)

NDR: Not Just a "Nice to Have" Anymore | Trend Micro (US)

Lumma Stealer’s GitHub-Based Delivery Explored via Managed Detection and Response | Trend Micro (US)

ASRM: A New Pillar for Cyber Insurance Underwriting | Trend Micro (US)

Trend Micro and CISA Secure-By-Design Pledge | Trend Micro (US)

Invisible Prompt Injection: A Threat to AI Security | Trend Micro (US)

World Tour Survey: Cloud Engineers Wrestle with Risk | Trend Micro (US)

IoT Botnet Linked to Large-scale DDoS Attacks Since the End of 2024 | Trend Micro (US)

Investigating A Web Shell Intrusion With Trend Micro™ Managed XDR | Trend Micro (US)

How Cracks and Installers Bring Malware to Your Device | Trend Micro (US)

Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit | Trend Micro (US)

Trend Container Security Detection Maps MITRE ATT&CK | Trend Micro (US)

Ultimate AWS re:Invent 2024 Recap | Trend Micro (US)

AI Pulse: Top AI Trends from 2024 - A Look Back | Trend Micro (US)

FedRAMP® ATO Boosts Zero Trust for Federal Agencies | Trend Micro (US)

Link Trap: GenAI Prompt Injection Attack | Trend Micro (US)

INTERPOL & Trend's Fight Against Cybercrime | Trend Micro (US)

MITRE ATT&CK 2024 Results for Enterprise Security | Trend Micro (US)

The Road to Agentic AI: Exposed Foundations | Trend Micro (US)

AI Configuration Best Practices for Better AI Security | Trend Micro (US)

World Tour Survey: IT Operations’ Hands-on Defense | Trend Micro (US)

Gafgyt Malware Targeting Docker Remote API Servers | Trend Micro (US)

AI Pulse: The Good from AI and the Promise of Agentic | Trend Micro (US)

Guess Who’s Back - The Return of ANEL in the Recent Earth Kasha Spear-phishing Campaign in 2024 | Trend Micro (US)

Spot the Difference: Earth Kasha's New LODEINFO Campaign And The Correlation Analysis With The APT10 Umbrella | Trend Micro (US)

Breaking Down Earth Estries Persistent TTPs in Prolonged Cyber Operations | Trend Micro (US)

SOC Around the Clock: World Tour Survey Findings | Trend Micro (US)

AI Pulse: Election Deepfakes, Disasters, Scams & more | Trend Micro (US)

Understanding the Initial Stages of Web Shell and VPN Threats An MXDR Analysis | Trend Micro (US)

Unmasking Prometei A Deep Dive Into Our MXDR Findings | Trend Micro (US)

Earth Simnavaz (aka APT34) Levies Advanced Cyberattacks Against Middle East | Trend Micro (US)

Gartner® 2024 CNAPP Market Guide Insights for Leaders | Trend Micro (US)

home
›
Trend Micro Simply Security
›
Software