Corporate News

Kaspersky’s anti-phishing systems have prevented 5 million cryptocurrency-related phishing attacks in 2022, increasing by 40 percent compared to the previous year. Conversely, there was a decrease in the detection of traditional financial threats, such as banking and mobile financial malware. These and other findings can be found in company’s latest report on financial threats.

Kaspersky researchers have discovered an ongoing disruptive cryptocurrency theft campaign affecting more than 15,000 users across 52 countries. Distributed under the guise of Tor Browser, the malware operates by replacing a portion of the entered clipboard contents with the cybercriminal’s own wallet address once it detects a wallet address in the clipboard. It’s estimated that - so far in 2023 - cybercriminals have been able to steal approximately US$400,000 using this malware.

Kaspersky experts have discovered how cybercriminals are using IPFS file distribution in email phishing attacks. Since late 2022, fraudsters have been using this safe, decentralized and reliable way for file distribution – considered to be one of the cutting-edge technologies of Web 3.0 – to target companies around the world. In a new report by Kaspersky, researchers reveal how attackers are putting phishing HTML files in IPFS to cut web hosting costs. This technique, used for both ongoing mass and targeted phishing campaigns, saw almost 400,000 phishing emails detected in February 2023.

Kaspersky was included in the IDC, Worldwide Modern Endpoint Security Market Shares, July 2021-June-2022: Currency Exchange Rates Slightly Trimmed Accelerating Growth (doc #US49982022, January 2023) as a vendor “who shaped the year”. According to the report, the company showed a promising year-on-year change with the stable or growing business in Latin America, META, CIS and Asia/Pacific (APAC). This share of the regional markets is reflected across all B2B products including modern endpoint security.

In October 2022, Kaspersky researchers discovered an ongoing advanced persistent threat (APT) campaign targeting organizations located in the area affected by the ongoing conflict between Russia and Ukraine. Dubbed CommonMagic, this espionage campaign has been active since at least September 2021, and uses a previously unknown malware to gather data from its targets. The targets include administration, agriculture and transportation organizations located in the Donetsk, Luhansk, and Crimea regions.

Study found that Singaporean youths do not perceive themselves as vulnerable to being hacked and downplays consequence of being hacked

Results based on independent global internet survey by AV-Comparatives.

For those leading in business, tech is fast-moving and sometimes confusing. Insight Story, a new audio series from Kaspersky, explains tech trends to empower business leaders with the insights they need to make the right decisions about emerging tech investment in their business. The audio series will premiere on March 22.

Kaspersky has published a new version of a decryption tool that helps victims of a ransomware modification based on previously leaked Conti source code. Conti is a ransomware gang that has dominated the cybercrime scene since 2019, and whose data, including source code, was leaked in March 2022 following an internal conflict caused by the geopolitical crisis in Europe. The discovered modification was distributed by an unknown ransomware group and has been used against companies and state institutions.

Latest Kaspersky research reveals cybercriminals posted more than 1 million messages mentioning escrow services on the darknet in 2020-2022. Escrow agents are third-party intermediaries involved in such deals to control the fulfillment of agreements and reduce the risks of cheating. They partner with cybercriminals who want to sell or buy data, services, or conclude a partnership - usually earning from three to 15 percent of the transaction. However, the deal can still fail for various reasons, including those related to escrow scams. How such business is done on the darknet is described in a new report by Kaspersky Digital Footprint Intelligence team.