Anime_007

Recently Norton has come up with Genie app and Bitdefender has Scamio which are basically AI based apps which tells the user whether a text or screenshot is scam or not by using AI functions. 

Not all scam links are detected by any AV. Its just a suggestion to introduce an app similar to what Norton or Bitdefender has offered for free.

https://thehackernews.com/2023/11/malicious-apps-disguised-as-banks-and.html?m=1

Please someone assure me that Trend Micro is aware of this sample targeting Indian users as a banking malware trojan.

The hacker news have covered about it.

Kindly forward my request to the virus researchers and the concerned teams and let me know if this sample which is in wild is known to the Trend Micro.

It would be better if Trend micro's password manager have advanced security mode for android. Which if selected asks for master password and fingerprint to unlock the vault. Also please introduce a notification based authentication. Which users have to confirm over mobile device for confirming the signing in or email based authentication.

These features are present in Truekey password manager of McAfee.

I know Trend Micro takes security issues seriously as I have been told by Trend micro employees here several times. But I would again like to get your attention to provide certain features to Trend Micro's Password manager-

1. Provide a password generator which generates more secure passwords upto 35 characters not just 20 of characters which also uses different characters than simply using the most common ones as we see now.

2. Provide re-captcha feature when signing in for the first time over Password manager portal or signing in for the first time over a device which can protect the users from credential stuffing attacks or mass login attempts like the one that happened with Norton.

3. Please make sure that Password manager can be used with ease when the user is trying to autologin using the password manager. Most of the times I had to copy and paste my id and passwords which is not secure.

4. Provide auto deletion option after few mins (auto deletion of clipboard content).

Recently we all see the news of Lastpass being hacked and vault data being stolen. Few days ago Norton Password Manager got compromised by credential stuffing attacks and if has affected for about 6,000 users of Norton. My question is how well Trend Micro's password manager is protected and secured. I know its 256 bit encryption and all that. I also use 2fa for my accounts but is it secure from credential stuffing attacks as I see no captcha method while trying to logging in. Please use re captcha method mandatorily for every login attempts. Also introduce email notification whenever the someone tries to login or someone logged in to password manager app under login activity via email.