-
Nov 28, 2024 | 
securelist.com | Igor Kuznetsov |Giampaolo Dedola |Georgy Kucherin |Maher Yamout
Kaspersky’s Global Research and Analysis Team (GReAT) has been releasing quarterly summaries of advanced persistent threat (APT) activity for over seven years now. Based on our threat intelligence research, these summaries offer a representative overview of what we’ve published and discussed in more detail in our private APT reports. They are intended to highlight the significant events and findings that we think are important for people to know about.
-
Nov 25, 2024 | 
securelist.com | Igor Kuznetsov |Giampaolo Dedola |Georgy Kucherin |Maher Yamout
We at Kaspersky’s Global Research and Analysis Team monitor over 900 APT (advanced persistent threat) groups and operations. At the end of each year, we take a step back to assess the most complex and sophisticated attacks that have shaped the threat landscape. These insights enable us to anticipate emerging trends and build a clearer picture of what the APT landscape may look like in the year ahead.
-
Apr 24, 2024 | 
securelist.com | Sergey Soldatov |Georgy Kucherin
In 2023, Kaspersky Managed Detection and Response (MDR) received more than 314,000 alerts worldwide. Kaspersky team processed these alerts and accumulated as anonymized customer cases to provide information about the current threat landscape. Join our webinar with Sergey Soldatov, Head of Kaspersky Security Operations Center, where he will tell about the nature of the identified incidents and highlight the most common tactics and techniques attackers used.
-
Nov 10, 2023 | 
securelist.com | Dmitry Kalinin |Seongsu Park |Leonid Bezvershenko |Georgy Kucherin
Ducktail is a malware family that has been active since the second half of 2021 and aims to steal Facebook business accounts. Kaspersky Daily Iran, WithSecure, and GridinSoft have all covered Ducktail attacks: the infostealer spread under the guise of documents relating to well-known companies’ and brands’ projects and products. The group behind the Ducktail attacks presumably hails from Vietnam.
-
Nov 2, 2023 | 
securelist.com | Dmitry Kalinin |Leonid Bezvershenko |Georgy Kucherin |Igor Kuznetsov
It is not rare that users of popular instant messaging services find the official client apps to be lacking in functionality. To address that problem, third-party developers come up with mods that offer sought-after features besides aesthetic upgrades. Unfortunately, some of these mods contain malware alongside legitimate enhancements. A case in point occurred last year when we discovered the Triada Trojan inside a WhatsApp mod.
-
Oct 26, 2023 | 
packetstormsecurity.com | Georgy Kucherin |Leonid Bezvershenko |Boris Larin |iPod Touch
-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-10-25-2023-3 iOS 15.8 and iPadOS 15.8iOS 15.8 and iPadOS 15.8 addresses the following issues. Information about the security content is also available athttps://support.apple.com/kb/HT213990. Apple maintains a Security Updates page athttps://support.apple.com/HT201222 which lists recentsoftware updates with security advisories.
-
Oct 26, 2023 | 
securelist.com | Leonid Bezvershenko |Georgy Kucherin |Igor Kuznetsov |Boris Larin
In the beginning of 2023, thanks to our Kaspersky Unified Monitoring and Analysis Platform (KUMA) SIEM system, we noticed suspicious network activity that turned out to be an ongoing attack targeting the iPhones and iPads of our colleagues.
-
Oct 25, 2023 | 
seclists.org | Georgy Kucherin |Leonid Bezvershenko |Boris Larin |iPod Touch
Full Disclosuremailing list archivesFrom: Apple Product Security via Fulldisclosure <fulldisclosure () seclists org>Date: Wed, 25 Oct 2023 12:03:35 -0700-----BEGIN PGP SIGNED MESSAGE-----Hash: SHA256APPLE-SA-10-25-2023-3 iOS 15.8 and iPadOS 15.8iOS 15.8 and iPadOS 15.8 addresses the following issues. Information about the security content is also available athttps://support.apple.com/kb/HT213990.
-
Sep 27, 2023 | 
securelist.com | Roman Dedenok |Kaspersky ICS CERT |Georgy Kucherin |Leonid Bezvershenko
QR codes are everywhere: you can see them on posters and leaflets, ATM screens, price tags and merchandise, historical buildings and monuments. People use them to share information, promote various online resources, pay for their goodies, and pass verification. And yet you don’t see lots of QR codes in email: users often read messages on their phones without any other device handy for scanning. As such, most letters come with ordinary hyperlinks instead.
-
Sep 12, 2023 | 
securelist.com | Georgy Kucherin |Leonid Bezvershenko |Anton Kivva |David Emm
Over the last few years, Linux machines have become a more and more prominent target for all sorts of threat actors. According to our telemetry, 260,000 unique Linux samples appeared in the first half of 2023. As we will demonstrate in this article, campaigns targeting Linux can operate for years without being noticed by the cybersecurity community.
