Lumma Stealer Vacuum Filled by Upgraded Vidar 2.0 Infostealer, Researchers Say
Trend Micro believe security teams should anticipate increased Vidar 2.0 prevalence in campaigns through Q4 2025
Trend Micro is a cybersecurity company whose research and products address malware, vulnerabilities, cloud risks, and cyberattacks.
Search across headline titles and summaries.
Background for this topic.
Trend Micro is a cybersecurity vendor whose products protect endpoints, email, networks, cloud workloads, and consumer devices. It also publishes threat intelligence and vulnerability research. News under this tag may therefore concern security software vulnerabilities, product updates, malware campaigns, or research that helps defenders identify and investigate attacks.
For security teams, the vendor’s agents and management consoles can have broad access to systems, so flaws in them may enable tampering, privilege escalation, or evasion of detection; reviewing advisories and applying supported updates is important. Detection rules and threat reports should be tested against internal telemetry before being used for blocking or incident response. Organizations using hosted services should also assess what endpoint or network data is collected, how long it is retained, who can access it, and whether those practices meet privacy and contractual requirements.
Weekly headline count for the current query.
Trend Micro believe security teams should anticipate increased Vidar 2.0 prevalence in campaigns through Q4 2025
Lumma Stealer operators allegedly exposed in underground doxxing campaign, with sensitive details leaked by rival cybercriminals, according to Trend Micro
Trend Micro have reported a campaign exploiting a flaw in Cisco SNMP to install Linux rootkits on devices
Trend Micro highlighted the new LockBit version’s improved technical improvements and cross-platform functionality compared to previous iterations
Trend Micro said the use of AI platforms to create and host fake CAPTCHA pages helps attackers develop more sophisticated phishing campaigns at scale and speed
Trend Micro observed the attackers using terminal-based installation methods for the AMOS malware, luring macOS users into installing cracked versions of apps
Trend Micro highlighted a sophisticated post-compromise attack chain to deploy the Warlock ransomware in unpatched SharePoint on-prem environments
Trend Micro has released a temporary fix for the flaws, which enable remote code execution on on-prem Apex One machines
Trend Micro has observed the Bert ransomware group in operation since April 2025, with confirmed victims in sectors including healthcare, technology and event services
Trend Micro identified a novel “wipe mode” included in Anubis ransomware to prevent file recovery, increasing pressure on victims to give in to demands
Trend Micro observed a continuous development of Albabat ransomware, designed to expand attacks and streamline operations
Trend Micro found that Chinese espionage group Mustang Panda is deploying malware via legitimate Microsoft tools, enabling it to bypass ESET antivirus applications
Trend Micro uncovers BadIIS malware exploiting IIS servers for SEO fraud and malicious redirects
Trend Micro detailed how attackers are using a fake proof-of-concept for a critical Microsoft vulnerability, designed to steal sensitive data from security researchers
Trend Micro highlighted a case where an attacker posed as a client on an MS Teams call to distribute DarkGate malware
A Trend Micro analysis of Earth Estries found that the Chinese threat actor is using new backdoors to avoid detection during espionage operations
Trend Micro’s Robert McArdle says cybercriminals use of AI is far more limited than many realize, and pales in comparison to defenders' use of the technology
Trend Micro’s Zero Day Initiative hands out over $1m in awards for Pwn2Own competitors, who found more than 70 zero-day flaws
Trend Micro also revealed a connection between the Play ransomware group and the threat actor Prolific Puma
Trend Micro said the trojan has been observed masquerading as communications from tax agencies