tips

We break down the BeatBanker trojan attack, which combines espionage, crypto theft, and mining with inventive ways to dig its heels into a smartphone.

Tired of hallucinations in AI overviews, and have no clue as to why or how Copilot suddenly appeared on your PC? Here’s a guide to switching off those intrusive AI features in popular services.

A browser-in-the-browser attack, theoretically described in 2022, has been adopted in real-world phishing. We break down how it works, and how to spot a fake authentication window.

An in-depth analysis of CVE-2026-3102, a vulnerability posing a potential threat to anyone processing images on a Mac.

Learn how to spot deepfakes in photos, videos, voice messages, and video calls in real time.

Our Android apps are no longer available on Google Play. We explain how to download, install, and update them by alternative means.

What is the year 2038 problem — also known as “Unix Y2K” — and how to prepare corporate IT systems for it?

Crooks are impersonating your brand to attack customers, partners, and employees. How do you spot — and stop — an attack of the clones?

Generative AI has taken sextortion techniques to a whole new level — now, any social media user can become a victim. How can you protect yourself and your loved ones?

How criminals exploit the familiar “tap your phone to pay” feature to steal your money.

Eight digital New Year’s resolutions you absolutely need to keep.

We break down a new scam that leverages Telegram Mini Apps, and explain how to avoid taking the bait.

How to eliminate the threat posed to organizations by ownerless servers and services, outdated libraries, and insecure APIs.

A new wave of ClickFix attacks spreading a macOS infostealer are posting malicious user guides on the official ChatGPT website by piggybacking the chatbot’s chat-sharing feature.

Millions of websites based on React and Next.js contain an easy-to-exploit vulnerability that can lead to complete server takeover. How to check if your server is vulnerable, and protect corporate web assets?

The Whisper Leak attack allows its perpetrator to guess the topic of your conversation with an AI assistant — without decrypting the traffic. We explore how this is possible, and what you can do to protect your AI chats.

Here’s how to mitigate the risks of targeted attacks on your organization’s mail servers.

We’re going bargain hunting in a new way: armed with AI. In this post: examples of effective prompts.

Pixnapping is an Android vulnerability discovered by researchers that allows apps to steal passwords, one-time codes, and other confidential information from the screen without any special permissions from the operating system. How does it work, and what can you do to protect yourself?

You’ve received a threatening email. What’s your next move?

How organizations save employee time and boost productivity with the new version of Kaspersky SD-WAN.