AIAI sidebar spoofing: a new attack on AI browsers
How malicious extensions can spoof AI sidebars in the Comet and Atlas browsers, intercept user queries, and manipulate model responses.
Latest
vulnerabilitiesPrinters attacked by… fonts
We examine how popular Canon printers could become a foothold for attackers within an organization’s network.
Pixnapping vulnerability: unblockable screenshots of your Android phone
Pixnapping is an Android vulnerability discovered by researchers that allows apps to steal passwords, one-time codes, and other confidential information from the screen without any special permissions from the operating system. How does it work, and what can you do to protect yourself?
social engineeringFileFix: a new ClickFix variation
Malicious actors have started utilizing a new variation of the ClickFix technique — named “FileFix”. We explain how it works, and how to defend your company against it.
scamEmail extortion: how scammers use blackmail
You’ve received a threatening email. What’s your next move?
SD-WAN: new dimensions of efficiency
How organizations save employee time and boost productivity with the new version of Kaspersky SD-WAN.
Don’t look up, or How to intercept satellite data
Researchers have discovered that 50% of data transmitted via satellites is unencrypted. This includes your mobile calls and texts, along with banking, military, government, and other sensitive information. How did this happen, and what can we do about it?
LinuxKaspersky protection for Linux: a new standard of security
Kaspersky for Linux is now available to home users.
What an MXDR solution for SMBs should be like
The differences between an MXDR service for a large enterprise, and one that would fit perfectly into the security framework of a growing SMB.
Gamers
Vulnerability in Unity game engine
Any game based on the popular Unity engine made in the last eight years can allow attackers to get into your computer or smartphone. Here’s what to do about it.
Gamers under fire: malware on official websites
Official gaming websites and platforms may seem safe, but even there gamers occasionally encounter malware. We break down infection cases involving Endgame Gear, Steam, and Minecraft.
Gamers beware: Trojans have invaded Steam
If you still think that Steam, Google Play, and the App Store are malware-free, then read this fascinating story about PirateFi and other hacker creations disguised as games.
How scammers attack young gamers
Autumn is here, kids are going back to school and also meeting up with friends in their favorite online games. With that in mind, we have just carried out one of our biggest ever studies of the threats young gamers are most likely to encounter.
Live hack: Apex Legends esports tournament scandal
Hackers have long been engaging with the gaming world: from cracking games and creating cheats, to, more recently, attacking esports players live during an Apex Legends tournament. Regarding the latter, we break down what happened and how it could have been avoided.
Mario Forever, malware too: a free game with a miner and Trojans inside
Malicious versions of the free-to-download game Super Mario 3: Mario Forever plant a miner and a stealer on gamers’ machines.
Minecraft players under attack
Minecraft mods downloaded from several popular gaming websites contain dangerous malware. What we know so far.
Business
GhostCall and GhostHire: hunting for crypto assets
Two campaigns by the BlueNoroff APT group target developers and executives in the crypto industry.
The ForumTroll and his colleagues
Our experts have found common tools used by both the ForumTroll APT group and attackers using Dante malware by Memento Labs.
side-channel attacksCan your mouse eavesdrop on you?
The optical sensors in computer mice can be used for eavesdropping. We break down why this is fascinating — but still a long way from real-world practicality.
Hidden links to… porn sites – on your company website
Attackers are abusing legitimate websites to host hidden SEO links. We break down their tactics, and what you can do about it.
Hacking TEEs in server infrastructure
Two separate research papers vividly demonstrate how virtual systems can be compromised in a hostile environment — specifically, when the data owner can’t even trust the cloud provider.
I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place.
Eugene Kaspersky
Tips
Social media privacy in 2025: what you need to know
Which social networks mostly just display your posts to your friends, and which ones use them for AI training and ad targeting? We explore the 2025 privacy rankings for popular social media platforms.
Messaging app privacy: 2025 rankings
Which messaging apps leak the least amount of your data, and provide the most control over your privacy? Today we discuss the latest rankings of popular communication platforms.
How to disappear from the internet
A step-by-step guide to deleting as much of your digital footprint as possible.
The pros and cons of AI-powered browsers
A race between tech giants is unfolding before our very eyes. Who’ll be the first to transform the browser into an AI assistant app? As you test these new products, be sure to consider their enormous impact on security and privacy.