iOSHacking a powered-off iPhone: vulnerabilities never sleep
Can a device be hacked when switched off? Recent studies suggest so. Let’s see how this is even possible.
Latest
APTWinDealer: spyware with a peculiar delivery mechanism
Our experts studied the WinDealer malware created by the LuoYu APT group.
phishingPhishing for Wise guys
Here’s how phishers extract phone numbers and credentials from users of Wise.
kidsLearn your kid’s language
Studying search queries popular with kids will help you start speaking your kid’s language.
vulnerabilitiesFollina: office documents as an entrance
New vulnerability CVE-2022-30190, aka Follina, allows exploitation of Windows Support Diagnostic Tool via MS Office files.
Rosemarie Gonzales: “It’s important to free yourself of misconceptions”
Meet Rosemarie Gonzales, Corporate Communications Manager at Kaspersky Southeast Asia.
How to improve smart car apps
After conducting a thorough study of applications for connected cars, our experts highlighted a number of flaws of such software.
Automotive apps: who gets your car keys?
Most third-party apps for connected cars require access to your account with the manufacturer. But are they secure?
2FAA passwordless future?
Let’s see how Google, Microsoft and Apple can work together to do away with passwords.
Key incident response skills
What should an incident response specialist be able to do and how can they improve their skills?
Gamers
Attack on Cities: Skylines — malicious code in a virtual city
We explain why game mods can be dangerous, using as an example malicious mods for Cities: Skylines.
Dangerous vulnerability in Dark Souls III videogame
Dangerous vulnerability was discovered in Dark Souls III videogame that can be used to gain control of a gamer’s computer.
Malicious activity in Discord chats
In the wake of recent research, we talk about several scenarios that underlie malicious activity on Discord.
BloodyStealer is hunting for gamers
Gamer accounts are in demand on the underground market. Proof positive is BloodyStealer, which steals account data from popular gaming stores.
The dangers of pirated games
Adware, Trojans, and other malware aren’t the only reasons not to download illegal games.
A trick auction to steal gold in World of Warcraft
A malicious script in the WeakAuras add-on can eradicate several days of farming in WoW Classic in a second.
Malware in Minecraft mods: story continues
We found more Minecraft modpacks and a file recovery utility available in Google Play concealing malicious adware.
Steam and mirrors: How gamers get duped
Gut-wrenching stories of in-game cheating told by actual participants.
Business
DHS recommends patching VMware, probably you should too
The Department of Homeland Security is urging US federal agencies to “patch or remove” a list of VMware products within five days. Probably you should do it too.
How to prevent a ransomware attack from happening again?
For Anti-Ransomware Day, we decided to publish few tips that will help your company avoid falling victim to ransomware for a second time.
Actively exploited vulnerability in Windows
Time to update Windows! Microsoft has released patches for several dozen vulnerabilities, one of which cybercriminals are actively exploiting.
Is your mic really muted?
We cite an interesting study on how the mute button actually works in teleconferencing services, and discuss privacy in the web conferencing era.
7 factors affecting the level of industrial cybersecurity
What to pay attention to as to minimize the outcome from cyberincidents in an industrial facility.
Malware in e-mail on the rise
Malicious spam campaign targeting organizations grows 10-fold in a month, spreads Qbot and Emotet malware.
I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place.
Eugene Kaspersky
Popular
Critical vulnerability in Apache Log4j library
Researchers discovered a critical vulnerability in Apache Log4j library, which scores perfect 10 out of 10 in CVSS. Here’s how to protect against it.
Finding hidden cameras with your smartphone’s ToF sensor
We explain what a smartphone’s ToF sensor is and how researchers from Singapore propose using it to find hidden cameras.
Browser-in-the-browser attack: a new phishing technique
We explain a new sneaky technique for stealing passwords, and how to avoid being tricked by a phishing site.
The best authenticator apps for Android, iOS, Windows, and macOS
A detailed guide to the world of authenticator apps for those looking for an alternative to Google Authenticator.
What to do if you lose your phone with an authenticator app
Can’t sign in to an account because your authenticator app is on a lost phone? Here’s what to do.
Setting app permissions in iOS 15
How to set app permissions in iOS 15 for maximum privacy and security.
Tracking airplanes: how Flightradar24 works
Flightradar24 allows you to track what’s happening to any particular aircraft taking a family member or friend to their destination. Let’s find out how this service works.
Tips
Eight steps to freedom: How to detach from social networks
Free yourself from social media and start living again.
6 antiphishing tips
How to spot dangerous links sent in messages and other tricks scammers use to steal your data.