Connect with us

Hi, what are you looking for?



Trend Micro Employee Sold Customer Data to Scammers

Trend Micro on Tuesday disclosed an insider threat incident that involved an employee selling the personal information of roughly 100,000 customers to tech support scammers.

Trend Micro on Tuesday disclosed an insider threat incident that involved an employee selling the personal information of roughly 100,000 customers to tech support scammers.

Trend Micro learned in early August that some customers of its home security product had been getting scam calls from individuals claiming to represent Trend Micro support. An investigation was launched immediately and, in late October, the company concluded that an insider was involved.

“Our open investigation has confirmed that this was not an external hack, but rather the work of a malicious internal source that engaged in a premeditated infiltration scheme to bypass our sophisticated controls,” Trend Micro said.

According to the cybersecurity firm, an employee improperly accessed a customer support database containing names, email addresses, support ticket numbers and, in some cases, phone numbers. The company says there is no evidence that any other type of information, such as financial details or data on enterprise customers, has been compromised.

Trend Micro determined that the employee sold the information to an unknown “malicious actor,” which used it to make scam calls pretending to be Trend Micro support personnel.

The employee in question has been terminated and there is an ongoing law enforcement investigation into this incident.

Trend Micro has determined that less than 1% of the 12 million customers using its consumer solutions are affected and they should have already received a notification from the company. It appears the scammers targeted only English-speaking customers.

Advertisement. Scroll to continue reading.

“If you have purchased our consumer product, you should know that Trend Micro will never call you unexpectedly. If a support call is to be made, it will be scheduled in advance. If you receive an unexpected phone call claiming to be from Trend Micro, hang up and report the incident to Trend Micro support using our official contact details below,” Trend Micro told customers.

Related: Insider Threat: Common Myths and Misconceptions

Related: Ex-Senate Employee Pleads Guilty to Theft of Personal Data

Related: Former Employee Hacks Popular WordPress Plugin’s Website

Written By

Eduard Kovacs (@EduardKovacs) is a managing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.

CISO Strategy

SecurityWeek spoke with more than 300 cybersecurity experts to see what is bubbling beneath the surface, and examine how those evolving threats will present...


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.

CISO Conversations

Joanna Burkey, CISO at HP, and Kevin Cross, CISO at Dell, discuss how the role of a CISO is different for a multinational corporation...

CISO Conversations

In this issue of CISO Conversations we talk to two CISOs about solving the CISO/CIO conflict by combining the roles under one person.