Research, News, and Perspectives

Cyber Threats

Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit

Our blog entry discusses a fake PoC exploit for LDAPNightmare (CVE-2024-49113) that is being used to distribute information-stealing malware.

Research Jan 09, 2025

Save to Folio

Research Jan 09, 2025

Save to Folio

Cloud

2024 Perspective: The Ultimate re:Invent Recap

Ashley & Danielle's Ultimate Recap

Expert Perspective Jan 07, 2025

Save to Folio

Expert Perspective Jan 07, 2025

Save to Folio

Cyber Threats

Trend Micro Contributes and Maps Container Security to MITRE ATT&CK: A Game-Changer for Cyber Defense

Trend Micro leads the way by mapping its Container Security detection capabilities to the MITRE ATT&CK framework for Containers and contributing real-world attack data.

Research Jan 07, 2025

Save to Folio

Research Jan 07, 2025

Save to Folio

Exploits & Vulnerabilities

What We Know About CVE-2024-49112 and CVE-2024-49113

This blog entry provides an overview of CVE-2024-49112 and CVE-2024-49113 and includes information that organizations need to know to stay protected against potential exploitation.

Research Jan 04, 2025

Save to Folio

Research Jan 04, 2025

Save to Folio

Artificial Intelligence (AI)

AI Pulse: Top AI Trends from 2024 - A Look Back

In this edition of AI Pulse, let's look back at top AI trends from 2024 in the rear view so we can more clearly predicts AI trends for 2025 and beyond.

Expert Perspective Jan 03, 2025

Save to Folio

Expert Perspective Jan 03, 2025

Save to Folio

Compliance & Risks

FedRAMP ATO Boosts Zero Trust for Federal Agencies

Trend Vision One™ for Government has obtained a FedRAMP Authorization to Operate (ATO). This milestone enables Federal government customers to leverage Trend’s platform to rapidly stop adversaries and control their cybersecurity risk posture.

Latest News Dec 19, 2024

Save to Folio

Latest News Dec 19, 2024

Save to Folio

Malware

Python-Based NodeStealer Version Targets Facebook Ads Manager

In this blog entry, Trend Micro’s Managed XDR team discusses their investigation into how the latest variant of NodeStealer is delivered through spear-phishing attacks, potentially leading to malware execution, data theft, and the exfiltration of sensitive information via Telegram.

Research Dec 19, 2024

Save to Folio

Research Dec 19, 2024

Save to Folio

Artificial Intelligence (AI)

Link Trap: GenAI Prompt Injection Attack

Prompt injection exploits vulnerabilities in generative AI to manipulate its behavior, even without extensive permissions. This attack can expose sensitive data, making awareness and preventive measures essential. Learn how it works and how to stay protected.

Security Strategies Dec 17, 2024

Save to Folio

Security Strategies Dec 17, 2024

Save to Folio

APT & Targeted Attacks

Earth Koshchei Coopts Red Team Tools in Complex RDP Attacks

APT group Earth Koshchei, suspected to be sponsored by the SVR, executed a large-scale rogue RDP campaign using spear-phishing emails, red team tools, and sophisticated anonymization techniques to target high-profile sectors.

Latest News Dec 17, 2024

Save to Folio

Latest News Dec 17, 2024

Save to Folio

Cyber Threats

Vishing via Microsoft Teams Facilitates DarkGate Malware Intrusion

In this blog entry, we discuss a social engineering attack that tricked the victim into installing a remote access tool, triggering DarkGate malware activities and an attempted C&C connection.

Latest News Dec 13, 2024

Save to Folio

Latest News Dec 13, 2024

Save to Folio