trendmicroblog - zero redgem

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	TRENDMICROBLOG:...	Pwn2Own Berlin 2026: On the Ground With TrendAI™ ZDI’s Biggest AI Showdown Yet_TRENDMICROBLOG:127FB8AA6D6D15531363CF4A27AD695A 47 zero-days fell at Pwn2Own Berlin 2026 for US$1,298,250 in payouts. TrendAI™ was on the ground all three days — here's what we saw.	N/A	N/A	Jun 1, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Smart Contracts for C&C: How ClearFake Hid in Plain Sight on BSC Testnet_TRENDMICROBLOG:481B9F956ADFBF515F9E6309DE191064 TrendAI™ Research analyzed an intrusion where threat actors used the EtherHiding technique to route ClearFake payload delivery through smart contra...	N/A	N/A	May 26, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Analyzing Void Dokkaebi’s Cython-Compiled InvisibleFerret Malware_TRENDMICROBLOG:FE3D9CADB53C53E2D8C590C90EE9B230 Void Dokkaebi, a North Korea-aligned intrusion set, has updated its information-stealing malware, InvisibleFerret, shifting its delivery format to ...	N/A	N/A	May 22, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	One Man, One AI, One Fake Persona: Inside the 5-Year Influence and Fraud ‘Patriot Bait’ Campaign_TRENDMICROBLOG:EB2222B5C61A008BA86767DC4C97652A A solo Russian-speaking threat actor ran a 5-year Telegram channel and, starting September 2025, used AI to automate its content, credential theft,...	N/A	N/A	May 21, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Inside SHADOW-WATER-063’s Banana RAT: From Build Server to Banking Fraud_TRENDMICROBLOG:1E60502358A713E0938EC5FE5DA0F80F In this blog entry, researchers from the TrendAI™ MDR team discuss how they mapped the full end-to-end operation of SHADOW-WATER-063’s Banana RAT b...	N/A	N/A	May 19, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Agentic Governance: Why It Matters Now_TRENDMICROBLOG:8B361C0BE66D189FF06197B57178CA42 AI agents now act inside the trust boundary with real credentials, and agentic governance is what keeps them from quietly breaking things at machin...	N/A	N/A	May 18, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Analyzing TeamPCP’s Supply Chain Attacks: Checkmarx KICS and elementary-data in CI/CD Credential Theft_TRENDMICROBLOG:530B75494CFEF7819D0E71B25BD22F21 Our research examines the April 22 Checkmarx KICS and April 24 elementary-data incidents as part of a broader TeamPCP supply chain campaign. Across...	N/A	N/A	May 13, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Vibe Hacking: Two AI-Augmented Campaigns Target Government and Financial Sectors in Latin America_TRENDMICROBLOG:68C9F3354333E529059E771E6C0DF298 TrendAI™ Research has identified two emerging threat campaigns—SHADOW-AETHER-040 and SHADOW-AETHER-064—that use agentic AI to drive intrusion opera...	N/A	N/A	May 11, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	What Is the Instructure Canvas Breach? Impact, Risks, and What Institutions Should Do_TRENDMICROBLOG:6AFC56E5044B38FD9C230B2D9B6E3FD3 The Instructure Canvas breach affects universities, K–12 school districts, and teaching hospitals globally. This blog entry intends to provide cont...	N/A	N/A	May 10, 2026	TRENDMICROBLOG
NONE	TRENDMICROBLOG:...	Supporting the National Cyber Strategy: How TrendAI™ Helps_TRENDMICROBLOG:5B1C20AD3F18E8D08552639FD72D55B8 A deeper look at the first three pillars and outlining how our capabilities directly support government agencies working to bring this strategy to ...	N/A	N/A	May 6, 2026	TRENDMICROBLOG