SIEMHow to detect FortiCloud SSO authentication bypass
Kaspersky SIEM got a set of correlation rules for detecting attempts to exploit vulnerabilities for authentication bypass in Fortinet products.
Business
1388 articles
The practical value of cyberthreat attribution
Why is it useful to attribute malware to a specific hacker group?
Detecting account compromise with SIEM
Detecting attacks related to compromised accounts with AI and other updates in Kaspersky SIEM.
AIAI agents in your organization: managing the risks
The top-10 risks of deploying autonomous AI agents, and our mitigation recommendations.
Epochalypse Now — or how to deal with Y2K38
What is the year 2038 problem — also known as “Unix Y2K” — and how to prepare corporate IT systems for it?
threatsWhy businesses need to track down their evil digital twins
Crooks are impersonating your brand to attack customers, partners, and employees. How do you spot — and stop — an attack of the clones?
Trust but verify: how we set the standard for transparency and trust
Who can you trust in the cybersecurity solutions market? Fourteen major vendors were compared in terms of transparency, security management, and data-handling practices – and guess which was a leader across the board?!…
infostealersStealthy malware masking its activity, deploying infostealer
Cybercriminals are distributing malware that deploys an infostealer and masks its activity in network and system logs.
ForumTroll targets political scientists
GReAT experts have analyzed a new targeted campaign by the ForumTroll APT group.
Forgotten IT infrastructure: even worse than shadow IT
How to eliminate the threat posed to organizations by ownerless servers and services, outdated libraries, and insecure APIs.
Malware hiding in a 3D model
How automation turns legitimate tools into a channel for malware delivery.
vulnerabilitiesReact4Shell vulnerability: protecting web servers from CVE-2025-55182
Millions of websites based on React and Next.js contain an easy-to-exploit vulnerability that can lead to complete server takeover. How to check if your server is vulnerable, and protect corporate web assets?
embedded systemsSecuring embedded devices in 2025
Identifying threats to embedded devices, and how the updated Kaspersky Embedded Systems Security can help in tackling them?
Hardening Exchange servers
Here’s how to mitigate the risks of targeted attacks on your organization’s mail servers.
browsersBrowser extensions: never trust, always verify
Systematic measures and tools that organizations can use to defend against malicious browser extensions.
Printers attacked by… fonts
We examine how popular Canon printers could become a foothold for attackers within an organization’s network.
FileFix: a new ClickFix variation
Malicious actors have started utilizing a new variation of the ClickFix technique — named “FileFix”. We explain how it works, and how to defend your company against it.
SD-WAN: new dimensions of efficiency
How organizations save employee time and boost productivity with the new version of Kaspersky SD-WAN.
What an MXDR solution for SMBs should be like
The differences between an MXDR service for a large enterprise, and one that would fit perfectly into the security framework of a growing SMB.
GhostCall and GhostHire: hunting for crypto assets
Two campaigns by the BlueNoroff APT group target developers and executives in the crypto industry.
The ForumTroll and his colleagues
Our experts have found common tools used by both the ForumTroll APT group and attackers using Dante malware by Memento Labs.