APTBlueNoroff’s search for cryptocurrency
Our experts have discovered a malicious campaign targeting fintech companies.
APT
104 articles
SASTomiris backdoor
At the SAS 2021 conference, our experts talked about the Tomiris backdoor, which appears to be linked to the DarkHalo group.
RansomwareCorporation hunters: Top 5 ransomware groups
The most active groups targeting companies, encrypting data, and demanding ransom.
MontysThree: Industrial cyberspy
Cybercriminals are using steganography to hide their code and seek industrial data.
Operation PowerFall: Two zero-day vulnerabilities
Our technologies prevented an attack. Expert analysis revealed the exploitation of two previously unknown vulnerabilities. What you need to know.
sandboxSandbox for experts
We developed a sandbox capable of emulating a company-specific system in an isolated environment.
Which hacker group is attacking your corporate network? Don’t guess, check!
We have released a new solution that provides businesses with code similarity analysis and gives technical evidence for APT attribution.
PhantomLance Android backdoor discovered on Google Play
Kaspersky experts found the PhantomLance Trojan backdoor for Android in Google Play.
Dangerous holy water
Attackers are infecting users’ computers with a backdoor posing as an Adobe Flash Player update.
Collateral damage from APTs
How APTs compromise the privacy and security of average citizens that they do not target directly.
Web-threat protection and targeted attacks
Web threats are actively used in targeted attacks, so their neutralization should be an integral part of APT defense strategy.
“Puss in Boots” APT campaign
Charles Perrault explains how hired hackers use social engineering and watering hole attacks for political purposes.
A honeytrap for malware
Eugene Kaspersky explains how Kaspersky Sandbox uses virtual machines to thoroughly examine malware’s behavior.
Despite FIN7 arrests, malicious activity continues
Although the suspected leader of the FIN7 cybergang was arrested, malicious activity somehow persists.
Carbanak source code leak: What’s next?
The source code of infamous, billion-dollar malware was found on VirusTotal. Here’s what we know about it and what to expect next.
CVE-2019-0859: A zero-day vulnerability in Windows
Our proactive security technologies uncovered an attempt to exploit another zero-day vulnerability in win32k.sys.
The complexities of public attribution
A look at the complexities of public attribution and why nation-states doing it will have real-world implications.
podcastPodcast: #TheSAS2019 recap day 2
Jay Rosenberg of GReAT joins Jeff and Ahmed to recap the second day of the Security Analyst Summit in Singapore.
The Gaza cybergang and its SneakyPastes campaign
A cybergang that specializes in cyberespionage, with its campaign mostly limited to the Middle East and countries in central Asia.
Another Taj Mahal (between Tokyo and Yokohama)
A new APT attack targets the diplomatic mission of an Asian country.
SAS preview: Sergey Lozhkin
A preview of the 2019 Security Analyst Summit from Kaspersky Lab with Sergey Lozhkin and Jeff Esposito.