Research, News, and Perspectives

ZDI-23-1527 and ZDI-23-1528: The Potential Impact of Overly Permissive SAS Tokens on PC Manager Supply Chains

In ZDI-23-1527 and ZDI-23-1528 we uncover two possible scenarios where attackers could have compromised the Microsoft PC Manager supply chain.

Research Apr 15, 2025

Save to Folio

Research Apr 15, 2025

Save to Folio

Malware

BPFDoor’s Hidden Controller Used Against Asia, Middle East Targets

A controller linked to BPF backdoor can open a reverse shell, enabling deeper infiltration into compromised networks. Recent attacks have been observed targeting the telecommunications, finance, and retail sectors across South Korea, Hong Kong, Myanmar, Malaysia, and Egypt.

Research Apr 14, 2025

Save to Folio

Research Apr 14, 2025

Save to Folio

Exploits & Vulnerabilities

Incomplete NVIDIA Patch to CVE-2024-0132 Exposes AI Infrastructure and Data to Critical Risks

A previously disclosed vulnerability in NVIDIA Container Toolkit has an incomplete patch, which, if exploited, could put a wide range of AI infrastructure and sensitive data at risk.

Research Apr 10, 2025

Save to Folio

Research Apr 10, 2025

Save to Folio

APT & Targeted Attacks

Trend Vision One™ Now Supports Azure vTAP

Effective April 2025, Microsoft is launching their Azure vTAP and integrating it with Trend Vision One Network Detection and Response solution. This integration allows organisations to gain deep visibility into cloud network traffic without compromising performance. It ensures real-time detection, faster incident response, and an enhanced security posture while reducing operational complexity.

Security Strategies Apr 09, 2025

Save to Folio

Security Strategies Apr 09, 2025

Save to Folio

Compliance & Risks

CTEM + CREM: Aligning Your Cybersecurity Strategy

Organisations looking to implement CTEM don’t have to start from scratch. CREM can help you get there faster, with actionable insights, automated workflows, and continuous risk reduction.

Expert Perspective Apr 08, 2025

Save to Folio

Expert Perspective Apr 08, 2025

Save to Folio

Artificial Intelligence (AI)

GTC 2025: AI, Security & The New Blueprint

From quantum leaps to AI factories, GTC 2025 proved one thing: the future runs on secure foundations.

Expert Perspective Apr 07, 2025

Save to Folio

Expert Perspective Apr 07, 2025

Save to Folio

Artificial Intelligence (AI)

Capacity is Critical in Riskier Threat Landscape

International cooperation, reporting, and capacity building are critical to enhance cybersecurity defences. Effective governance in an increasingly risky landscape requires visibility as well as coordinated vulnerability disclosure.

Expert Perspective Apr 04, 2025

Save to Folio

Expert Perspective Apr 04, 2025

Save to Folio

APT & Targeted Attacks

The Espionage Toolkit of Earth Alux: A Closer Look at its Advanced Techniques

The cyberespionage techniques of Earth Alux, a China-linked APT group, are putting critical industries at risk. The attacks, aimed at the APAC and Latin American regions, leverage powerful tools and techniques to remain hidden while stealing sensitive data.

Research Mar 31, 2025

Save to Folio

Research Mar 31, 2025

Save to Folio

Exploits & Vulnerabilities

A Deep Dive into Water Gamayun’s Arsenal and Infrastructure

Trend Research discusses the delivery methods, custom payloads, and techniques used by Water Gamayun, the suspected Russian threat actor abusing a zero-day vulnerability in the Microsoft Management Console framework (CVE-2025-26633) to execute malicious code on infected machines.

Research Mar 28, 2025

Save to Folio

Research Mar 28, 2025

Save to Folio

Artificial Intelligence (AI)

Trend Cybertron: Full Platform or Open-Source?

Previously exclusive to Trend Vision One customers, select Trend Cybertron models, datasets and agents are now available via open-source. Build advanced security solutions and join us in developing the next generation of AI security technology.

Latest News Mar 27, 2025

Save to Folio

Latest News Mar 27, 2025

Save to Folio