APTTriangleDB: the spyware implant of Operation Triangulation
APT operators are showing increasing interest in mobile devices. Our experts have studied one of their tools.
APT
111 articles
Mark-of-the-Web bypass
The BlueNoroff APT group has adopted methods to bypass the Mark-of-the-Web mechanism
tipsIs Avast Safe to Use in 2023?
Avast solutions have a pretty good reputation, but a handful of incidents call their safety into question. Read on to learn whether Avast can be trusted.
vulnerabilitiesVulnerability in Zimbra exploiting ITW
Servers with the Zimbra Collaboration suit installed are being attacked via an archive unpacking tool.
WinDealer: spyware with a peculiar delivery mechanism
Our experts studied the WinDealer malware created by the LuoYu APT group.
Lazarus backdoor in DeFi wallet
The Lazarus group continues to prey on cryptocurrency: cybercriminals distribute DeFi wallets with built-in backdoor.
spywareStaying safe from Pegasus, Chrysaor and other APT mobile malware
How to protect your iPhone or Android smartphone from Pegasus and similar mobile APTs.
BlueNoroff’s search for cryptocurrency
Our experts have discovered a malicious campaign targeting fintech companies.
Tomiris backdoor
At the SAS 2021 conference, our experts talked about the Tomiris backdoor, which appears to be linked to the DarkHalo group.
Corporation hunters: Top 5 ransomware groups
The most active groups targeting companies, encrypting data, and demanding ransom.
MontysThree: Industrial cyberspy
Cybercriminals are using steganography to hide their code and seek industrial data.
Operation PowerFall: Two zero-day vulnerabilities
Our technologies prevented an attack. Expert analysis revealed the exploitation of two previously unknown vulnerabilities. What you need to know.
sandboxSandbox for experts
We developed a sandbox capable of emulating a company-specific system in an isolated environment.
Which hacker group is attacking your corporate network? Don’t guess, check!
We have released a new solution that provides businesses with code similarity analysis and gives technical evidence for APT attribution.
PhantomLance Android backdoor discovered on Google Play
Kaspersky experts found the PhantomLance Trojan backdoor for Android in Google Play.
Dangerous holy water
Attackers are infecting users’ computers with a backdoor posing as an Adobe Flash Player update.
Collateral damage from APTs
How APTs compromise the privacy and security of average citizens that they do not target directly.
Web-threat protection and targeted attacks
Web threats are actively used in targeted attacks, so their neutralization should be an integral part of APT defense strategy.
“Puss in Boots” APT campaign
Charles Perrault explains how hired hackers use social engineering and watering hole attacks for political purposes.
A honeytrap for malware
Eugene Kaspersky explains how Kaspersky Sandbox uses virtual machines to thoroughly examine malware’s behavior.
Despite FIN7 arrests, malicious activity continues
Although the suspected leader of the FIN7 cybergang was arrested, malicious activity somehow persists.