supply-chain attackAttack on DevOps: secrets leaked via malicious GitHub Action
How to respond to a compromised GitHub changed-files Action incident.
Latest
AndroidGoogle forcing Android System SafetyCore on users to scan for nudes
We dive into the mechanics of the controversial nude-scanning app that has mysteriously materialized on a billion phones.
Three VMware vulnerabilities: key risks and urgent patches
Reasons for updating your ESXi infrastructure ASAP, and enterprise threats that VM escape poses.
Six Microsoft vulnerabilities being actively exploited
Microsoft’s March Patch Tuesday fixes several vulnerabilities that have already been used in the wild. Details are not clear at the moment, but it’s worth installing the patches ASAP.
scamLessons from the Bybit hack: how to store crypto safely
Takeaways for regular crypto holders from the biggest crypto heist in history.
phishingChecking QR codes in emails
We’ve added technology that checks QR codes in emails for phishing links.
The digital illusion: millennials and the risks of online trust
Despite being digital natives, 70% of millennials rarely verify online identities – exposing themselves to risks. Discover how to build safer online habits with expert insights from Kaspersky.
AITrojans masquerading as DeepSeek and Grok clients
We found several groups of sites mimicking official websites of the DeepSeek and Grok chatbots. Fake sites distribute malware under the guise of non-existent chatbot clients for Windows.
Miner inconvenience: how cybercriminals blackmail YouTubers into promoting malware
Cybercriminals are blackmailing YouTube bloggers into posting malware links in their video descriptions.
Gamers
Gamers beware: Trojans have invaded Steam
If you still think that Steam, Google Play, and the App Store are malware-free, then read this fascinating story about PirateFi and other hacker creations disguised as games.
How scammers attack young gamers
Autumn is here, kids are going back to school and also meeting up with friends in their favorite online games. With that in mind, we have just carried out one of our biggest ever studies of the threats young gamers are most likely to encounter.
Live hack: Apex Legends esports tournament scandal
Hackers have long been engaging with the gaming world: from cracking games and creating cheats, to, more recently, attacking esports players live during an Apex Legends tournament. Regarding the latter, we break down what happened and how it could have been avoided.
Mario Forever, malware too: a free game with a miner and Trojans inside
Malicious versions of the free-to-download game Super Mario 3: Mario Forever plant a miner and a stealer on gamers’ machines.
Minecraft players under attack
Minecraft mods downloaded from several popular gaming websites contain dangerous malware. What we know so far.
The Phantom Menace: how gamers of different ages are being attacked
Why scammers are more likely to target kids than hardcore gamers, how they do it, and what they want to steal
Business
What events help an MDR service detect attacks?
What information does an MDR service need to protect a company from complex targeted attacks?
Attack on Google OAuth using abandoned domains
A vulnerability in Google OAuth allows attackers to access accounts of defunct organizations through abandoned domains.
How to safely scan large file storage for malware
A step-by-step guide to scanning disk arrays weighing tens of terabytes with the aid of Kaspersky products.
UnitedHealth ransomware attack
A year after the ransomware attack on healthcare giant UnitedHealth Group, we’ve compiled all publicly available information about the incident and its aftermath.
I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place.
Eugene Kaspersky
Popular
iphoneFact or fiction: Hyphens break iPhones
Does saying “hyphen” five times to your iPhone really crash it — or is that just another myth?
7 steps to minimize game lags in Windows 10
These seven tips will help you get maximum gaming performance from your PC while retaining a high level of protection.
big data10 Cool Big Data Projects
There are many cool and funny projects in the world that deal with big data and we’ve gathered the Top 10 list of the most interesting ones. See for yourself!
Change Your Password Day Strong Password Day
Changing passwords regularly is outdated. Use strong and unique passwords that are easy to remember instead. Here’s how to make them.
Who to trust: Different types of SSL certificates
We explain what digital certificates are, what types exist, and what problems are associated with them.
Rooting your Android: Advantages, disadvantages, and snags
Many users of devices running Android are tempted to root them. Here we explain the good and bad sides of having superuser rights.
VPNs: What you need to know
There’s been a lot of talk lately about privacy protection and VPNs. But what exactly is a VPN? We explain in simple words.
Tips
How to safely convert files
Online converters are a tempting but dangerous way to change file formats. We tell you how to convert files and not get trojanized.
How smartphones build a dossier on you
We break down the most covert mechanism of smartphone surveillance using real-life examples.
SparkCat trojan stealer infiltrates App Store and Google Play, steals data from photos
We’ve discovered apps in the official Apple and Google stores that steal cryptocurrency wallet data by analyzing photos.
Spam 101: what is spam, and how to defeat it
It feels as if spam is as old as the internet itself. The post looks at the money-making scams devised over the years, and how to avoid them today.