Research, News, and Perspectives

Exploits & Vulnerabilities

Incomplete NVIDIA Patch to CVE-2024-0132 Exposes AI Infrastructure and Data to Critical Risks

A previously disclosed vulnerability in NVIDIA Container Toolkit has an incomplete patch, which, if exploited, could put a wide range of AI infrastructure and sensitive data at risk.

Research Apr 10, 2025

Save to Folio

Research Apr 10, 2025

Save to Folio

Compliance & Risks

CTEM + CREM: Aligning Your Cybersecurity Strategy

Organizations looking to implement CTEM don’t have to start from scratch. CREM can help you get there faster, with actionable insights, automated workflows, and continuous risk reduction.

Expert Perspective Apr 08, 2025

Save to Folio

Expert Perspective Apr 08, 2025

Save to Folio

Artificial Intelligence (AI)

GTC 2025: AI, Security & The New Blueprint

From quantum leaps to AI factories, GTC 2025 proved one thing: the future runs on secure foundations.

Expert Perspective Apr 07, 2025

Save to Folio

Expert Perspective Apr 07, 2025

Save to Folio

Artificial Intelligence (AI)

Capacity is Critical in Riskier Threat Landscape

International cooperation, reporting, and capacity building are critical to enhance cybersecurity defenses. Effective governance in an increasingly risky landscape requires visibility as well as coordinated vulnerability disclosure.

Expert Perspective Apr 04, 2025

Save to Folio

Expert Perspective Apr 04, 2025

Save to Folio

APT & Targeted Attacks

The Espionage Toolkit of Earth Alux: A Closer Look at its Advanced Techniques

The cyberespionage techniques of Earth Alux, a China-linked APT group, are putting critical industries at risk. The attacks, aimed at the APAC and Latin American regions, leverage powerful tools and techniques to remain hidden while stealing sensitive data.

Research Mar 31, 2025

Save to Folio

Research Mar 31, 2025

Save to Folio

Exploits & Vulnerabilities

A Deep Dive into Water Gamayun’s Arsenal and Infrastructure

Trend Research discusses the delivery methods, custom payloads, and techniques used by Water Gamayun, the suspected Russian threat actor abusing a zero-day vulnerability in the Microsoft Management Console framework (CVE-2025-26633) to execute malicious code on infected machines.

Research Mar 28, 2025

Save to Folio

Research Mar 28, 2025

Save to Folio

Artificial Intelligence (AI)

Trend Cybertron: Full Platform or Open-Source?

Previously exclusive to Trend Vision One customers, select Trend Cybertron models, datasets and agents are now available via open-source. Build advanced security solutions and join us in developing the next generation of AI security technology.

Latest News Mar 27, 2025

Save to Folio

Latest News Mar 27, 2025

Save to Folio

Compliance & Risks

Trend Micro & IBM Team Up To Boost Mainframe Security

Trend Micro Deep Security adds security for mainframe enterprise integration

Latest News Mar 27, 2025

Save to Folio

Latest News Mar 27, 2025

Save to Folio

Exploits & Vulnerabilities

CVE-2025-26633: How Water Gamayun Weaponizes MUIPath using MSC EvilTwin

Trend Research identified Russian threat actor Water Gamayun exploiting CVE-2025-26633, a zero-day vulnerability in the Microsoft Management Console that attackers exploit to execute malicious code and exfiltrate data.

Research Mar 25, 2025

Save to Folio

Research Mar 25, 2025

Save to Folio

Ransomware

Albabat Ransomware Group Potentially Expands Targets to Multiple OS, Uses GitHub to Streamline Operations

Trend Research encounters new versions of the Albabat ransomware, which appears to target Windows, Linux, and macOS devices. We also reveal the group’s use of GitHub to streamline their ransomware operation.

Research Mar 21, 2025

Save to Folio

Research Mar 21, 2025

Save to Folio