-
1 month ago | 
securelist.com | Igor Kuznetsov |Boris Larin |Kaspersky GERT |Kaspersky Security
In mid-March 2025, Kaspersky technologies detected a wave of infections by previously unknown and highly sophisticated malware. In all cases, infection occurred immediately after the victim clicked on a link in a phishing email, and the attackers’ website was opened using the Google Chrome web browser. No further action was required to become infected. All malicious links were personalized and had a very short lifespan.
-
Oct 31, 2024 | 
securelist.com | Vladislav Tushkanov |Boris Larin |Vasily Berdnikov |Anna Pavlovskaya
One topic being actively researched in connection with the breakout of LLMs is capability uplift – when employees with limited experience or resources in some area become able to perform at a much higher level thanks to LLM technology. This is especially important in information security, where cyberattacks are becoming increasingly cost-effective and larger-scale, causing headaches for security teams. Among other tools, attackers use LLMs to generate content for fake websites.
-
Oct 22, 2024 | 
securelist.com | Igor Kuznetsov |Boris Larin |Giampaolo Dedola |Vasily Berdnikov
Grandoreiro is a well-known Brazilian banking trojan — part of the Tetrade umbrella — that enables threat actors to perform fraudulent banking operations by using the victim’s computer to bypass the security measures of banking institutions. It’s been active since at least 2016 and is now one of the most widespread banking trojans globally.
-
Oct 17, 2024 | 
securelist.com | Igor Kuznetsov |Boris Larin |Alexander Kryazhev |Denis Sitchikhin
On May 18, 2024, Kaspersky’s Global Research & Analysis Team (GReAT), with the help of its partners, held the qualifying stage of the SAS CTF, an international competition of cybersecurity experts held as part of the Security Analyst Summit conference. More than 800 teams from all over the world took part in the event, solving challenges based on real cases that Kaspersky GReAT encountered in its work, but a couple of challenges remained unsolved.
-
Apr 24, 2024 | 
securelist.com | Boris Larin |Denis Legezo |Brian Bartholomew |Costin Raiu
Social engineering for open-source supply chain attack profit High-end APT groups perform highly interesting social engineering campaigns in order to penetrate well-protected targets.
-
Jan 17, 2024 | 
securelist.com | Sergey Lozhkin |Anna Pavlovskaya |Kaspersky Security |Boris Larin
An overview of last year’s predictionsA data leakage is a broad term encompassing various types of information that become publicly available, or published for sale on the dark web or other shadow web sites. Leaked information may include internal corporate documents, databases, personal and work login credentials, and other types of data. Last year, we predicted that personal data and corporate email would increasingly be at risk, and the prediction proved largely accurate.
-
Dec 27, 2023 | 
securelist.com | Boris Larin |Sergey Puzan |Sergey Lozhkin |Anna Pavlovskaya
Today, on December 27, 2023, we (Boris Larin, Leonid Bezvershenko, and Georgy Kucherin) delivered a presentation, titled, “Operation Triangulation: What You Get When Attack iPhones of Researchers”, at the 37th Chaos Communication Congress (37C3), held at Congress Center Hamburg. The presentation summarized the results of our long-term research into Operation Triangulation, conducted with our colleagues, Igor Kuznetsov, Valentin Pashkov, and Mikhail Vinogradov.
-
Oct 26, 2023 | 
packetstormsecurity.com | Georgy Kucherin |Leonid Bezvershenko |Boris Larin |iPod Touch
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-10-25-2023-3 iOS 15.8 and iPadOS 15.8iOS 15.8 and iPadOS 15.8 addresses the following issues. Information about the security content is also available athttps://support.apple.com/kb/HT213990. Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security advisories.
-
Oct 26, 2023 | 
securelist.com | Leonid Bezvershenko |Georgy Kucherin |Igor Kuznetsov |Boris Larin
In the beginning of 2023, thanks to our Kaspersky Unified Monitoring and Analysis Platform (KUMA) SIEM system, we noticed suspicious network activity that turned out to be an ongoing attack targeting the iPhones and iPads of our colleagues.
-
Oct 25, 2023 | 
seclists.org | Georgy Kucherin |Leonid Bezvershenko |Boris Larin |iPod Touch
Full Disclosuremailing list archivesFrom: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org>Date: Wed, 25 Oct 2023 12:03:35 -0700-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-10-25-2023-3 iOS 15.8 and iPadOS 15.8iOS 15.8 and iPadOS 15.8 addresses the following issues. Information about the security content is also available athttps://support.apple.com/kb/HT213990.
