Securelist | Kaspersky’s threat research and reports

I identified several signs of attacks that use forged certificates inside the network and developed a Proof-of-Concept utility capable of finding artifacts in AD, as well as a number of detection logic rules that can be added to SIEM.

Threats

Latest Posts

Webinars

Register to Access All Kaspersky Webinars

Categories

The smartphone threat statistics for Q1 2023 includes data for Android malware, adware, banking Trojans and ransomware.

While monitoring the traffic of our own corporate Wi-Fi network, we noticed suspicious activity that originated from several iOS-based phones. We created offline backups of the devices, inspected them and discovered traces of compromise.

Reports

This is our latest summary of the significant events and findings, focusing on activities that we observed during Q2 2023.

While monitoring the traffic of our own corporate Wi-Fi network, we noticed suspicious activity that originated from several iOS-based phones. We created offline backups of the devices, inspected them and discovered traces of compromise.

GoldenJackal is an APT group, active since 2019, that usually targets government and diplomatic entities in the Middle East and South Asia. The main feature of this group is a specific toolset of .NET malware, JackalControl, JackalWorm, JackalSteal, JackalPerInfo and JackalScreenWatcher.

Kaspersky analysis of the CloudWizard APT framework used in a campaign in the region of the Russo-Ukrainian conflict.

Securelist by Kaspersky

Anomaly detection in certificate-based TGT requests

APT trends report Q2 2023

Comprehensive analysis of initial attack samples exploiting CVE-2023-23397 vulnerability

Email crypto phishing scams: stealing from hot and cold crypto wallets

Andariel’s silly mistakes and a new malware family

How cybercrime is impacting SMBs in 2023

LockBit Green and phishing that targets organizations

Dissecting TriangleDB, a Triangulation spyware implant

Threats

Latest Posts

A bowl full of security problems: Examining the vulnerabilities of smart pet feeders

Understanding Malware-as-a-Service

Sneaky DoubleFinger loads GreetingGhoul targeting your cryptocurrency

IT threat evolution Q1 2023

Webinars

Unveiling the Darknet’s Malware-as-a-Service model

Securing the Fort: How to master cyber incident response in a large company

Cyberthreats to modern automotive industry

Applying ATT&CK to analyze ransomware campaigns

Categories

IT threat evolution Q1 2023. Mobile statistics

IT threat evolution in Q1 2023. Non-mobile statistics

Satacom delivers browser extension that steals cryptocurrency

Operation Triangulation: iOS devices targeted with previously unknown malware

Reports

APT trends report Q2 2023

Operation Triangulation: iOS devices targeted with previously unknown malware

Meet the GoldenJackal APT group. Don’t expect any howls

CloudWizard APT: the bad magic story goes on

Subscribe to our weekly e-mails