APT

Servers with the Zimbra Collaboration suit installed are being attacked via an archive unpacking tool.

Our experts studied the WinDealer malware created by the LuoYu APT group.

The Lazarus group continues to prey on cryptocurrency: cybercriminals distribute DeFi wallets with built-in backdoor.

How to protect your iPhone or Android smartphone from Pegasus and similar mobile APTs.

Our experts have discovered a malicious campaign targeting fintech companies.

At the SAS 2021 conference, our experts talked about the Tomiris backdoor, which appears to be linked to the DarkHalo group.

The most active groups targeting companies, encrypting data, and demanding ransom.

Cybercriminals are using steganography to hide their code and seek industrial data.

Our technologies prevented an attack. Expert analysis revealed the exploitation of two previously unknown vulnerabilities. What you need to know.

We developed a sandbox capable of emulating a company-specific system in an isolated environment.

We have released a new solution that provides businesses with code similarity analysis and gives technical evidence for APT attribution.

Kaspersky experts found the PhantomLance Trojan backdoor for Android in Google Play.

Attackers are infecting users’ computers with a backdoor posing as an Adobe Flash Player update.

How APTs compromise the privacy and security of average citizens that they do not target directly.

Web threats are actively used in targeted attacks, so their neutralization should be an integral part of APT defense strategy.

Charles Perrault explains how hired hackers use social engineering and watering hole attacks for political purposes.

Eugene Kaspersky explains how Kaspersky Sandbox uses virtual machines to thoroughly examine malware’s behavior.

Although the suspected leader of the FIN7 cybergang was arrested, malicious activity somehow persists.

The source code of infamous, billion-dollar malware was found on VirusTotal. Here’s what we know about it and what to expect next.

Our proactive security technologies uncovered an attempt to exploit another zero-day vulnerability in win32k.sys.

A look at the complexities of public attribution and why nation-states doing it will have real-world implications.