Corporate News

Kaspersky researchers have discovered that malware dubbed WinDealer, spread by Chinese-speaking Advanced Persistent Threat (APT) actor LuoYu, has an ability to perform intrusions through a man-on-the-side attack. This groundbreaking development allows the actor to modify network traffic in-transit to insert malicious payloads. Such attacks are especially dangerous and devastating because they do not require any interaction with the target to lead to a successful infection.

A new Kaspersky Safe Kids study has revealed the most viewed children’s interests between March and May 2022.

Employees who receive 30-60 external emails per day could be wasting 11 hours every year looking through and identifying spam messages. For employees receiving between 60-100 emails a day, this number rises to 18 hours per year, which is more than two business days. These are the findings from Kaspersky’s analysis of the amount of spam bombarding corporate mailboxes and how it could affect the productivity of employees[1].

The new release of Kaspersky Threat Intelligence (TI) unifies all vendors’ TI services, sources and cyber-reconnaissance capabilities in a single and convenient interface. The updated portal supports real-time search across various threat intelligence resources, including Kaspersky’s databases, Dark Web and Surface Web. New features include the visualization of cyber-investigations and extended opportunities for analysis of complex malicious objects.

Research based on the analysis of incidents reported to customers of Kaspersky Managed Detection and Response (MDR) has revealed that the share of critical incidents experienced by organizations increased from one-in-ten (9%) in 2020, to one-in-seven (14%) in 2021.

Mobile applications for connected cars provide various features to make life easier for motorists, but they can also be a source of risk. Kaspersky experts have analyzed 69 popular third-party mobile applications designed to control connected cars and defined the main threats drivers may face while using them. They found out that more than half (58%) of these applications use the vehicle owners’ credentials without asking for their consent. On top of this, one in five of the applications have no contact information, which makes it impossible to report a problem. These and other findings are published in the new Kaspersky Connected Apps report.

Kaspersky VPN Secure Connection was awarded among the best VPNs for streaming, gaming and torrenting for private users by AV-TEST, the independent IT security institute.

In 2020, Kaspersky ICS CERT discovered nine vulnerabilities in the ISaGRAF Runtime platform, which is used as an automation framework in multiple products in various industries across the globe. Besides the industrial control system (ICS), ISaGRAF’s application areas include transportation, power & energy, and other sectors, which means the security of the platform becomes of national interest. The vulnerabilities were fixed by the vendor, Rockwell Automation, in early 2022. The recent report issued by Kaspersky provides an overview of ISaGRAF framework and covers the most critical vulnerabilities identified along with possible attack vectors.

The Radicati Group’s latest report, analyzing the market for APT solutions, placed Kaspersky in the top quadrant of providers for its Kaspersky Anti Targeted Attack Platform, Kaspersky EDR Expert and other enterprise products. The company’s “top player” status came from its high ranking in functionality and strategic vision, putting it in the top five vendors based on these metrics.

According to the recent Kaspersky survey conducted among senior non-IT management and business owners, 73% of firms can’t handle a ransomware attack alone or with the help of regular IT service providers. To offer in-house cybersecurity teams and InfoSec professionals an opportunity to expand their analytical skills in the incident response domain, Kaspersky has designed a new Windows Incident Response training course.