Blogs

May 08, 2025

The Bug Report - April 2025 Edition

Spring clean your security! Dive into April 2025’s top CVEs, live exploits, and patches. Stay ahead of attacks — read the full Bug Report now.

May 08, 2025

The Growing Threat of Vishing: How Cybercriminals Are Using Multimedia to Target You

New vishing attack technique we need to be aware of. How cybercriminals are using multimedia to target you.

Apr 21, 2025

A Deep Dive into the Latest Version of Lumma InfoStealer

The Trellix Advanced Research Center has been closely tracking the latest developments in Lumma Infostealer, particularly the recent introduction of sophisticated code flow obfuscation techniques. This report will delve into the threat actors' recent campaign and examine the evolution of their Tactics, Techniques, and Procedures (TTPs).

Apr 16, 2025

Closing the Security Gap From Threat Hunting to Detection Engineering

Learn how to use existing tooling to perform threat hunting and detection engineering to find hidden threats and strengthen your defenses.

Apr 03, 2025

The Bug Report - March 2025 Edition

March Madness hits infosec: kernel bugs, Tomcat deserialization, and SonicWall shenanigans. Catch the highlights and patch fast before you’re benched!

Mar 18, 2025

Analysis of Black Basta Ransomware Chat Leaks

Trellix obtained access to Black Basta's chat leaks at the end of February 2025 and immediately began analyzing the chat logs. Given that Black Basta is a rebrand of Conti RaaS, our approach mirrored that which we took in Conti Leaks: Examining the Panama Papers of Ransomware.

Jan 30, 2025

The Bug Report - January 2025 Edition

Explore January 2025’s top CVEs, from RTF exploits to command injection chaos. Stay ahead with insights, PoCs, and patch recommendations. Protect your systems now!

Jan 27, 2025

Cyber Threat Landscape Q&A with Trellix Head of Threat Intelligence John Fokker

We sat down with Trellix Head of Threat Intelligence John Fokker to get his thoughts on the most pressing cyber threats of 2025 and biggest takeaways from 2024.

Jan 07, 2025

Blurring the Lines: How Nation-States and Organized Cybercriminals Are Becoming Alike

The distinction between nation-state actors and organized cybercriminals is becoming increasingly blurred in our rapidly evolving cyber landscape. Historically, these groups had distinct motivations: nation-states sought to achieve long-term geopolitical advantages through espionage and intelligence operations, while cybercriminals focused on financial gain, exploiting vulnerabilities for extortion, theft, and fraud.

Dec 20, 2024

Safeguarding Election Integrity: Threat Hunting for the U.S. Elections

With 2024 being a major election year globally, the stakes for election security were and remain high. More than 60 countries, including the United States, Mexico, India, and Indonesia, held elections and engaged nearly 2 billion voters. The U.S. general election on November 5th, 2024, drew significant attention due to concerns over potential interference and cybersecurity threats.