A living security platform with a pulse that is always learning and always adapting.
Download the Magic Quadrant report, which evaluates the 19 vendors based on ability to execute and completeness of vision.
As per Gartner, "XDR is an emerging technology that can offer improved threat prevention, detection and response."
Our Summer 2022 threat report details the evolution of Russian cybercrime, research into medical devices and access control systems, and includes analysis of email security trends.
At Hardwear.io 2022, Trellix researchers disclosed 8 zero-day vulnerabilities in HID Global Mercury access control panels, allowing them to remotely unlock and lock doors, modify and configure user accounts and subvert detection from management software.
Trellix CEO, Bryan Palma, explains the critical need for security that’s always learning.
A living security platform with a pulse that is always learning and always adapting.
Trellix Advanced Threat Research
What We Do
At Trellix Advanced Threat Research (ATR), our goal is to identify and illuminate a broad spectrum of threats in today's complex landscape. ATR researchers are responsible for research in nearly every vertical of threat, including those targeting financial, retail, medical, industrial controls and many other industries. We have experts in vulnerability and threat research who find and report critical vulnerabilities in popular hardware and software and who use a global network of endpoints to track malware campaigns as well as the nation-states and malicious actors behind them.
Our red team incorporates and builds upon the techniques, tactics, and procedures (TTPs) uncovered by our researchers while performing engagements where the robustness of both our products and infrastructure are continuously being tested. And our Operational Intelligence team operates globally around the clock, keeping watch of the latest cyber campaigns and actively tracking the most impactful cyber threats. These findings are fed back into the solutions that ultimately power Trellix’s products.
View the Tools & Techniques Library
Latest Report
Our Summer 2022 threat report details the evolution of Russian cybercrime, research into medical devices and access control systems.
The Bug Reports
A light-reading publication featuring the most impactful vulnerabilities every month
Research Spotlight
Perimeter Breached! Hacking an Access Control System
Trellix researchers demonstrate the effect of 8 original vulnerabilities they found in HID Mercury access control panels to lock and unlock doors remotely.
Read More5G: The Final Frontier
Today Trellix Threat Labs is excited to announce the release of a whitepaper dedicated to 5G and its potential security concerns. As we look at the potential of 5G, we foresee it impacting nearly every facet of digital life in the developed world.
Read MoreThe Hermit Kingdom’s Ransomware play
In February 2016, news broke about what is now known as the ‘Bangladesh Bank Heist’. Hackers attempted to transfer nearly one billion USD through the SWIFT system towards recipients at other banks.
Read MoreTrellix Threat Labs Uncovers Critical Flaws in Widely Used Building Access Control System
Today at the Hardwear.io Security Trainings and Conference, Trellix Threat Labs is sharing new research into vulnerabilities in an industrial control system (ICS) used to grant physical access to privileged facilities and integrate with more complex building automation deployments.
Read MoreConnected Healthcare: A Cybersecurity Battlefield We Must Win
The medical industry is at unique risk of attack due to the numerous purpose-built devices. Their lack of ubiquity creates a false sense of security and reduced scrutiny from the security research industry.
Read MoreThe Sound of Malware
We have frequently used code comparisons and visualizations but would it be possible to compare malware samples using a more abstract technique? What about sound?
Read MoreAutomotive
Trellix researchers investigate the attack surfaces in autonomous vehicles as well as the machine learning algorithms and physical-to-digital attacks related to them.
Learn MoreCritical Infrastructure
Trellix researchers investigate multiple areas of critical infrastructure implementations, including human machine interface (HMI) software, programmable logic controllers (PLCs), and network protocols, such as MODBUS, ICCP, and others.
Learn MoreHealthcare and Medical Devices
Our research explores medical devices, networks, protocols, and security practices to help healthcare organizations innovate securely.
Learn MoreSoftware-Defined Radio
Our research looks at radio frequency, including near-field communications (NFC and RFID) and wireless transmissions to determine potential impacts to network and proximity devices.
Learn MoreBrowser, Operating System & Enterprise Software
By discovering and disclosing critical vulnerabilities in the world’s most popular software, the Trellix threat labs team continuously reduces the overall attack surface for one of the most attractive targets for cybercriminals.
Learn MoreConsumer Electronics & IOT
Our researchers look for vulnerabilities in consumer devices to identify threats and guide manufacturers toward more secure products, reducing the potential for attackers to gain access to home or business networks.
Learn More
You're exiting Trellix.
Please pardon our appearance as we transition from McAfee Enterprise to Trellix.
Exciting changes are in the works.
We look forward to discussing your enterprise security needs.
You will be redirected in 0 seconds. If not, please click here to continue
You're exiting Trellix.
Please pardon our appearance as we transition from FireEye to Trellix.
Exciting changes are in the works.
We look forward to discussing your security needs.
You will be redirected in 0 seconds. If not, please click here to continue
McAfee Enterprise and FireEye Emerge as Trellix.
For legal information, please click on the corresponding link below.
