Tag: Securelist

The experienced Cloud Atlas group remains active, continuing to target government sectors and diplomatic entities in Russia and Belarus, employing both new and established techniques to maintain persistence in compromised systems. This article has been indexed from Securelist Read the…

Read more →

We explain how a flaw in ExifTool allows attackers to compromise macOS systems via a malicious image (CVE-2026-3102). This article has been indexed from Securelist Read the original article: How an image could compromise your Mac: understanding an ExifTool vulnerability…

Read more →

The report presents key trends and statistics on malware that targeted personal computers running Windows and macOS, as well as Internet of Things (IoT) devices, during Q1 2026. This article has been indexed from Securelist Read the original article: IT…

Read more →

This report contains mobile threat statistics for Q1 2026, along with noteworthy discoveries and quarterly trends: new versions of SparkCat and Triada. This article has been indexed from Securelist Read the original article: IT threat evolution in Q1 2026. Mobile…

Read more →

Kaspersky researchers analyze a range of new PebbleDash-based tools used in recent Kimsuky campaigns and reveal their connection to the AppleSeed malware cluster. This article has been indexed from Securelist Read the original article: Kimsuky targets organizations with PebbleDash-based tools

Read more →

Kaspersky researchers are sharing insights into the main ransomware trends for 2026: EDR killers on the rise, switching from data encryption to data leaks, and more. This article has been indexed from Securelist Read the original article: State of ransomware…

Read more →

During a security assessment of Kaspersky USB Redirector, we discovered CVE-2025-68670: a pre-auth RCE in the xrdp server component. Project maintainers promptly patched the vulnerability. This article has been indexed from Securelist Read the original article: CVE-2025-68670: discovering an RCE…

Read more →

This report provides statistical data on published vulnerabilities and exploits we researched during Q1 2026. It also includes summary data on the use of C2 frameworks in APT attacks. This article has been indexed from Securelist Read the original article:…

Read more →

Kaspersky researchers uncovered malicious wheel packages in PyPI that targeted both Windows and Linux and contained a dropper delivering malware dubbed ZiChatBot. We attribute this activity to OceanLotus APT. This article has been indexed from Securelist Read the original article:…

Read more →

We explain what suspicious websites are and how to distinguish a safe site from a fraudulent one. A new category in Kaspersky solutions: we’re sharing global statistics on untrusted site detection. This article has been indexed from Securelist Read the…

Read more →

Kaspersky expert breaks down a new phishing scheme that uses the Amazon SES cloud email service. Let’s look at some examples to see how you can tell a phishing email from a real one. This article has been indexed from…

Read more →

The Silver Fox group is targeting companies in Russia and India by impersonating tax authorities to distribute ValleyRAT and the new ABCDoor backdoor. This article has been indexed from Securelist Read the original article: Silver Fox uses the new ABCDoor…

Read more →

Kaspersky researcher discovered a vulnerability in RPC architecture that enables an attacker to create a fake RPC server and escalate their privileges. This article has been indexed from Securelist Read the original article: PhantomRPC: A new privilege escalation technique in…

Read more →

In March 2026, we uncovered more than twenty phishing apps in the Apple App Store masquerading as popular crypto wallets. This article has been indexed from Securelist Read the original article: FakeWallet crypto stealer spreading through iOS apps in the…

Read more →

The report contains industrial threat statistics for Q4 2025. It covers various infection vectors and malware types, as well as regional statistics and statistics by industry. This article has been indexed from Securelist Read the original article: Threat landscape for…

Read more →

Kaspersky GReAT experts describe the latest JanelaRAT campaign detailing infection chain and malware functionality updates. This article has been indexed from Securelist Read the original article: JanelaRAT: a financial threat targeting users in Latin America

Read more →

Threat actors are distributing a Trojan disguised as Proxifier software; through a multi-stage infection chain, it delivers ClipBanker – malware that replaces cryptocurrency wallet addresses in the clipboard. This article has been indexed from Securelist Read the original article: The…

Read more →

In this report, Kaspersky experts share their insights into the 2025 financial threat landscape, including regional statistics and trends in phishing, PC malware, and infostealers. This article has been indexed from Securelist Read the original article: Financial cyberthreats in 2025…

Read more →

Kaspersky researchers analyze a new CrystalX RAT distributed as MaaS and featuring extensive spyware, stealer, and prankware capabilities. This article has been indexed from Securelist Read the original article: A laughing RAT: CrystalX combines spyware, stealer, and prankware features

Read more →

Dissecting the supply-chain attack on LiteLLM – a multifunctional gateway used in many AI agents. Explaining the dangers of the malicious code and how to protect yourself. This article has been indexed from Securelist Read the original article: An AI…

Read more →