Category: Securelist

Kaspersky researchers are sharing insights into the main ransomware trends for 2026: EDR killers on the rise, switching from data encryption to data leaks, and more. This article has been indexed from Securelist Read the original article: State of ransomware…

Read more →

During a security assessment of Kaspersky USB Redirector, we discovered CVE-2025-68670: a pre-auth RCE in the xrdp server component. Project maintainers promptly patched the vulnerability. This article has been indexed from Securelist Read the original article: CVE-2025-68670: discovering an RCE…

Read more →

This report provides statistical data on published vulnerabilities and exploits we researched during Q1 2026. It also includes summary data on the use of C2 frameworks in APT attacks. This article has been indexed from Securelist Read the original article:…

Read more →

Kaspersky researchers uncovered malicious wheel packages in PyPI that targeted both Windows and Linux and contained a dropper delivering malware dubbed ZiChatBot. We attribute this activity to OceanLotus APT. This article has been indexed from Securelist Read the original article:…

Read more →

We explain what suspicious websites are and how to distinguish a safe site from a fraudulent one. A new category in Kaspersky solutions: we’re sharing global statistics on untrusted site detection. This article has been indexed from Securelist Read the…

Read more →

Kaspersky expert breaks down a new phishing scheme that uses the Amazon SES cloud email service. Let’s look at some examples to see how you can tell a phishing email from a real one. This article has been indexed from…

Read more →

The Silver Fox group is targeting companies in Russia and India by impersonating tax authorities to distribute ValleyRAT and the new ABCDoor backdoor. This article has been indexed from Securelist Read the original article: Silver Fox uses the new ABCDoor…

Read more →

Kaspersky researcher discovered a vulnerability in RPC architecture that enables an attacker to create a fake RPC server and escalate their privileges. This article has been indexed from Securelist Read the original article: PhantomRPC: A new privilege escalation technique in…

Read more →

In March 2026, we uncovered more than twenty phishing apps in the Apple App Store masquerading as popular crypto wallets. This article has been indexed from Securelist Read the original article: FakeWallet crypto stealer spreading through iOS apps in the…

Read more →

The report contains industrial threat statistics for Q4 2025. It covers various infection vectors and malware types, as well as regional statistics and statistics by industry. This article has been indexed from Securelist Read the original article: Threat landscape for…

Read more →

Kaspersky GReAT experts describe the latest JanelaRAT campaign detailing infection chain and malware functionality updates. This article has been indexed from Securelist Read the original article: JanelaRAT: a financial threat targeting users in Latin America

Read more →

Threat actors are distributing a Trojan disguised as Proxifier software; through a multi-stage infection chain, it delivers ClipBanker – malware that replaces cryptocurrency wallet addresses in the clipboard. This article has been indexed from Securelist Read the original article: The…

Read more →

In this report, Kaspersky experts share their insights into the 2025 financial threat landscape, including regional statistics and trends in phishing, PC malware, and infostealers. This article has been indexed from Securelist Read the original article: Financial cyberthreats in 2025…

Read more →

Kaspersky researchers analyze a new CrystalX RAT distributed as MaaS and featuring extensive spyware, stealer, and prankware capabilities. This article has been indexed from Securelist Read the original article: A laughing RAT: CrystalX combines spyware, stealer, and prankware features

Read more →

Dissecting the supply-chain attack on LiteLLM – a multifunctional gateway used in many AI agents. Explaining the dangers of the malicious code and how to protect yourself. This article has been indexed from Securelist Read the original article: An AI…

Read more →

Kaspersky GReAT experts look into the Coruna exploit kit targeting iPhones. We discovered that the kernel exploit for CVE-2023-32434 and CVE-2023-38606 is an updated version of the Operation Triangulation exploit. This article has been indexed from Securelist Read the original…

Read more →

The Kaspersky Security Services report describes cyberattack trends and statistics revealed by the Managed Detection and Response service. The report also includes Incident Response findings based on real-world cases identified and mitigated in 2025. This article has been indexed from…

Read more →

Kaspersky SOC uncovered and analyzed a complex Horabot campaign in Mexico. In this article we share insights into how it is unleashed and how to hunt for this threat. This article has been indexed from Securelist Read the original article:…

Read more →

Kaspersky GReAT experts describe the unprecedentedly complex Brazilian banking Trojan GoPix that employs memory-only implants, Proxy AutoConfig (PAC) files for man-in-the-middle attacks, and malvertising via Google Ads. This article has been indexed from Securelist Read the original article: Free real…

Read more →

Kaspersky researchers identified a new Android Trojan dubbed BeatBanker targeting Brazil, posing as government apps and Google Play Store, and capable of both crypto mining and stealing banking data. This article has been indexed from Securelist Read the original article:…

Read more →