A targeted underground doxxing campaign exposed alleged core members of Lumma Stealer (Water Kurita), resulting in a sharp decline in its activity and a migration of customers to rival infostealer platforms.

Trend™ Research has uncovered an attack campaign exploiting the Cisco SNMP vulnerability CVE-2025-20352, allowing remote code execution and rootkit deployment on unprotected devices, with impacts observed on Cisco 9400, 9300, and legacy 3750G series.

Discover how Trend Vision One™ integrates with Zscaler to unify detection and access enforcement, accelerate threat containment, reduce dwell time, and deliver seamless Zero Trust protection for modern enterprises.

Trend™ Research and ZDI Threat Hunters have identified a large-scale RondoDox botnet campaign exploiting over 50 vulnerabilities across more than 30 vendors, including flaws first seen in Pwn2Own contests.

Learn the state of AI and the NPM ecosystem with the recent s1ngularity' weaponized AI for credential theft.

In this post of THE AI BREACH, learn how your Chatbot can become a backdoor.

We discovered Azure Storage Account credentials exposed in Axis Communications’ Autodesk Revit plugin, allowing unauthorized modification of cloud-hosted files. This exposure, combined with vulnerabilities in Autodesk Revit, could enable supply-chain attacks targeting end users.

Eight takeaways on why Trend Vision One™ embodies the best of today’s CNAPP vision. Includes insights from 2025 Gartner® Market Guide for CNAPP

Cloud-native application protection platform (CNAPP) not only helps organizations protect, but offers the flexibility of multi-cloud.

Poisoned data. Malicious LoRAs. Trojan model files. AI attacks are stealthier than ever—often invisible until it’s too late. Here’s how to catch them before they catch you.

A single AI chatbot breach at Salesloft-Drift exposed data from 700+ companies, including security leaders. The attack shows how AI integrations expand risk, and why controls like IP allow-listing, token security, and monitoring are critical.

Trend™ Research’s analysis of Wondershare RepairIt reveals how the AI-driven app exposed sensitive user data due to unsecure cloud storage practices and hardcoded credentials, creating risks of model tampering and supply chain attacks.

Cybercriminals are abusing AI-native platforms like Vercel, Netlify, and Lovable to host fake captcha pages that deceive users, bypass detection, and drive phishing campaigns.

Trend™ Research outlines the critical details behind the ongoing NPM supply chain attack and offers essential steps to stay protected against potential compromise.

This blog post looks at four key milestones along the cybersecurity maturity journey and poses some questions you can ask to determine the stage of your organization’s progress.

An analysis of the Gentlemen ransomware group, which employs advanced, adaptive tactics, techniques, and procedure to target critical industries worldwide.

For CISOs responsible for cyber risk management, these three insights will help build a strong and reliable foundation for your proactive security strategy.

Stay ahead of evolving threats with AI-powered email and collaboration security.

Trend™ Research analyzed a campaign distributing Atomic macOS Stealer (AMOS), a malware family targeting macOS users. Attackers disguise the malware as “cracked” versions of legitimate apps, luring users into installation.

Streameast, the most popular and largest illicit live sports streaming network, was shut down following a coordinated law enforcement action conducted by Egyptian authorities last month, an antipiracy coalition of entertainment companies announced Wednesday.

Egyptian authorities seized infrastructure powering Streameast and arrested two operators at their residences in El-Sheik Zaid, Egypt, a spokesperson for the Alliance for Creativity and Entertainment told CyberScoop.

Streameast operated 80 domains and logged more than 1.6 billion visits during the past year, driving more than 136 million monthly average visits, according to the association of about 50 entertainment companies, film and TV studios.

A team of 22 Egyptian police officers participated in the Aug. 24 raid, confiscating three laptops and four smartphones that were used for Streameast’s operations. Authorities also seized 10 Visa cards containing about $123,000 in funds, the spokesperson said.

Streameast offered pirated access to major live sports broadcasts, including Europe’s top soccer leagues, the National Football League, the National Basketball Association, Major League Baseball, the National Hockey League and Major League Soccer. The network also ran sites for pay-per-view boxing matches, mixed martial arts and motorsports.

“With this landmark action, we have put more points on the board for sports leagues, entertainment companies, and fans worldwide — and our global alliance will stay on the field as long as it takes to identify and target the biggest piracy rings across the globe,” Charles Rivkin, chairman of ACE and chairman and CEO of the Motion Picture Association, said in a statement. 

Pirated networks, similar to other digital crime enterprises, are difficult to keep offline. New sites crop up often and operators can regroup after disruptions and reconstitute under new domains and infrastructure. 

“It’s not uncommon for copycat operations to appear following the takedown of a notorious piracy site, and it’s difficult to predict to what extent this might happen,” the spokesperson for ACE said. “ACE remains actively engaged with Egyptian authorities and we continue monitoring the landscape.”

The majority of Streameast’s traffic originated from the United States, Canada, the United Kingdom, the Philippines and Germany.

ACE claims global digital piracy impacts the U.S. economy to the tune of $29.2 billion and 230,000 jobs lost annually. The coalition said more than 2,500 illegal sites are taken down daily.

The post Streameast, world’s largest pirated live sports network, shut down by Egyptian authorities appeared first on CyberScoop.