Update on Pawn Storm: New Targets and Politically Motivated Campaigns
In the second half of 2017 Pawn Storm, an extremely active espionage actor group, didn’t shy away from continuing their brazen attacks. Usually, the group’s attacks are not isolated incidents, and we can often relate them to earlier attacks by carefully looking at both technical indicators and motives. Pawn Storm has been attacking political organizations […] more…Ransomware in a global context
Today we are proud to announce our very first VirusTotal Ransomware Activity Report. This initiative is designed to help researchers, security practitioners and the general public better understand the nature of ransomware attacks by sharing VirusTotal’s visibility. We are also organizing a series of webinars describing the main findings of our research, so please join […] more…More than a Dozen Obfuscated APT33 Botnets Used for Extreme Narrow Targeting
By Feike Hacquebord, Cedric Pernet, and Kenney Lu The threat group regularly referred to as APT33 is known to target the oil and aviation industries aggressively. This threat group has been reported on consistently for years, but our recent findings show that the group has been using about a dozen live Command and Control (C&C) […] more…APT trends report Q2 2019
For two years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent threat (APT) activity. The summaries are based on our threat intelligence research and provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. They aim to […] more…The Chronicles of the Hellsing APT: the Empire Strikes Back
Introduction One of the most active APT groups in Asia, and especially around the South China Sea area is “Naikon”. Naikon plays a key part in our story, but the focus of this report is on another threat actor entirely; one who came to our attention when they hit back at a Naikon attack. Naikon […] more…Denial of service in Depth Explained
Denial-of-service attack is a very famous and common attack we daily experience such attacks but we are not able to figure it out.Let me define Denial-of-service (DOS) for you a denial-of-service attack (DoS attack) or distributed denial-of-service attack (DDoS attack) is an attempt to make a machine or network resource unavailable to its intended users.What […] more…The Roof Is on Fire: Tackling Flame’s C&C Servers
On Sunday, May 27 2012, the Iranian MAHER CERT posted a note announcing the discovery of a new targeted attack dubbed “Flamer”. On Monday 28 May 2012 aat 9am EST, after an investigation prompted and supported by the International Telecommunication Union, Kaspersky Lab and CrySyS Lab from Hungary announced the discovery of Flame (aka Skywiper), […] more…More information
- Are you failing Security Basics 101?
- Huawei Has Replaced Thousands of US-Banned Parts With Chinese Versions: Founder
- Are you a potentially dangerous social misfit (aka not on Facebook)?
- Gmail will block JavaScript attachments, a common source of malware
- Dirty Dozen Spampionship – which country is spewing the most spam?
- Apple, the FBI and the ghost of the Clipper chip
- F-Secure launches stress test to detect security holes in enterprise networks
- Microsoft Patch Tuesday: 74 CVEs plus 2 “Exploit Detected” advisories
- Most SharePoint Installations Vulnerable to XSS Attacks
- Netflix Releases XSS Flaw Discovery Framework