e-mail threatsTrojan-stealer discovered in spam mailouts to businesses
Cybercriminals are sending to companies high-quality imitations of business letters to with a spy trojan in the attachment.
Latest
androidHarly: another Trojan subscriber on Google Play
We explain how the Harly Trojan subscriber targets Android users.
transparencyKaspersky Transparency Initiative update, September 2022
Introducing our new Transparency Center format and the opening of two more facilities in Europe.
EDRIntroducing: Kaspersky EDR Optimum
Kaspersky Endpoint Detection and Response Optimum – superior enterprise-cybersecurity, with no fluff.
Where did that game cheats video on your YouTube channel come from?
The RedLine Trojan stealer spreads under the guise of cheats for popular games and posts videos on victims’ YouTube channels with a link to itself in the description.
Patches for 64 vulnerabilities in Microsoft products released
It’s time to update! Microsoft patches 64 vulnerabilities in a variety of products and components — from Windows and Office to Defender and Azure.
Weaponizing game code to attack a company
An unusual case of an attack executed by weaponizing legit video game code.
Browser extensions: more dangerous than you think
Using the most common families of malicious extensions as an example, we explain what can go wrong after installing a browser plug-in.
A Zoom vulnerability, and the war between the hackers and the developers
Takeaway from DEF CON 30: vulnerability in Zoom for macOS.
incident responseHot off the press: a new study into “the nature of cyber incidents”
Highlights from “The nature of cyber incidents” report by the Kaspersky GERT team.
Gamers
$2 million inventory hacked in CS:GO
An unnamed hacker allegedly stole two million dollars’ worth of items from a CS:GO player’s backpack and has already started auctioning off the items.
Attack on Cities: Skylines — malicious code in a virtual city
We explain why game mods can be dangerous, using as an example malicious mods for Cities: Skylines.
Dangerous vulnerability in Dark Souls III videogame
Dangerous vulnerability was discovered in Dark Souls III videogame that can be used to gain control of a gamer’s computer.
Malicious activity in Discord chats
In the wake of recent research, we talk about several scenarios that underlie malicious activity on Discord.
BloodyStealer is hunting for gamers
Gamer accounts are in demand on the underground market. Proof positive is BloodyStealer, which steals account data from popular gaming stores.
The dangers of pirated games
Adware, Trojans, and other malware aren’t the only reasons not to download illegal games.
A trick auction to steal gold in World of Warcraft
A malicious script in the WeakAuras add-on can eradicate several days of farming in WoW Classic in a second.
Malware in Minecraft mods: story continues
We found more Minecraft modpacks and a file recovery utility available in Google Play concealing malicious adware.
Business
Three approaches to structuring and alert processing in a SOC
How to distribute SOC tasks to tackle both the cybersecurity skills shortage and burnout.
threat intelligenceHow to reduce the load on SIEM and make good use of threat-intelligence feeds
How a threat-intelligence platform helps SOC analysts.
The chronicle of WannaCry
Security evolution: The large-scale, but short-lived ransomware epidemic of 2017.
independent testsIndependent testing of EDR solutions
SE Labs awarded Kaspersky EDR its highest rating in independent tests based on real world attacks.
Retbleed attack, or Spectre strikes back
Using a recent study on hardware vulnerabilities in processors as an example, we contemplate the cost of security.
Andariel attacks with DTrack and Maui
The Andariel group attacks companies with several malicious tools.
I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place.
Eugene Kaspersky
Popular
How to watch porn safely and discreetly
Hiding your guilty pleasures from prying eyes is possible, but you need to do it properly.
ILOVEYOU: the virus that loved everyone
We recall the story of the ILOVEYOU worm — one of the most infamous viruses from 22 years ago.
Is your mic really muted?
We cite an interesting study on how the mute button actually works in teleconferencing services, and discuss privacy in the web conferencing era.
Browser-in-the-browser attack: a new phishing technique
We explain a new sneaky technique for stealing passwords, and how to avoid being tricked by a phishing site.
What to do if you lose your phone with an authenticator app
Can’t sign in to an account because your authenticator app is on a lost phone? Here’s what to do.
What to do if your phone gets stolen
If your phone falls into the hands of criminals, do not panic. Here is how to protect your data.
The hidden threats of router malware
Malware can infect your router, slow down the internet connection and steal data. We explain how to protect your Wi-Fi.
Tips
“To pop, or not to pop — that is the question”
How things are privacy-wise on the social network Poparazzi.
A half-a-billion-dollar crypto heist
We review a major cryptocurrency theft using spyware inside a PDF.
Raining bitcoin: Fake Nvidia giveaway
How scammers swindle users out of cryptocurrency through a fake Nvidia giveaway supposedly worth 50,000 BTC.
Hyped-up fake crypto-exchanges on YouTube
How scammers lure YouTube users to a fake website where a purported bug lets them exchange Bitcoin at an excellent rate.