Corporate News

Kaspersky ICS CERT investigated on Unified Messaging Application Services (UMAS) by Schneider Electric and the vulnerabilities of this highly popular protocol, which is used in multiple industries – from manufacturing to elevator control systems. By exploiting described vulnerabilities, attackers could gain access to the whole automation system of an entity.

Kaspersky researchers have discovered that the Prilex threat group, famous for stealing millions of dollars from banks, has evolved substantially. After developing both its technical innovations and marketing and business strategies, Prilex has upgraded its tools from a simple memory scraper to an advanced and complex malware, that now targets modular Point of Sales (PoS) terminals. Cybercriminals are also actively selling their malware on the darknet as Malware-as-a-Service, which means it is now available to other fraudsters, and the risk of losing money is increasing for businesses all around the world.

The recent Kaspersky global survey conducted amongst 1,307 decision-makers in companies with 1 to 999 workers shows that cybersecurity incidents pose almost the same difficulties as dramatic fall in sales. Thirteen percent of respondents from small and medium organizations find online attacks the most challenging. Research findings also suggest that the likelihood of facing a cybersecurity incident increases with the number of employees working in the company.

Kaspersky researchers have uncovered a new campaign, spreading NullMixer — a malware stealing users’ credentials, address, credit card data, cryptocurrencies, and even Facebook and Amazon accounts. Trying to download cracked software from third-party sites, more than 47,500 users were attacked with NullMixer, able to spy on users, capturing any information they’re entering on the keyboard.

Kaspersky has opened new trust-building facilities for the company’s partners and customers in Italy and the Netherlands. The centers operate within a new format providing customers and partners only with the most popular service — an overview of Kaspersky’s engineering and data processing practices.

With the latest version of this solution, users can now take advantage of an essential endpoint detection and response tool with in-built users who can access an advanced automated detection mechanism and tailored incident response recommendations. The updated Kaspersky Endpoint Detection and Response Optimum also ensures protection from damage to crucial OS files and provides information on file reputation from Kaspersky’s Threat Intelligence portal.

Kaspersky researchers spotted an unusual malicious bundle (a collection of malicious programs distributed in the form of a single installation file, self-extracting archive or other file with installer-type functionality) targeting gamers on YouTube. Its main payload is the widespread RedLine stealer, one of the most common Trojans used to steal passwords and credentials from browsers.

Kaspersky’s latest invention is intended for logically linking various electronic devices into a single network around the account of the owner and identifying similarities between device configurations. The technology will help to prevent any user devices from becoming a vector of attack on another device or user data and will inform them if their configuration is insecure.

With new EDR functionality in Kaspersky Industrial CyberSecurity, customers can now gain instant visibility on operational technology (OT) security incidents and run response actions. The solution also helps reveal hidden weaknesses in networks, be it vulnerabilities, misconfigurations or incompliance with policies and regulations. With the new features of active polling and a physical topology map, organizations can see even more of the assets in their OT network and how they interconnect. These new capabilities and the deeper integration of Kaspersky Industrial CyberSecurity for Nodes and Kaspersky Industrial CyberSecurity for Networks greatly enhance the OT visibility and control, compliance, and threat protection.