Business

1219 articles

EM Eye: data theft from surveillance cameras

An unusual method of stealing data from surveillance cameras

We explain in simple terms research demonstrating a vulnerability in modern digital video cameras.

Mitigating the risks of residential proxies

Residential proxies: understanding the risks for organizations

Proxyware can make it difficult to detect cyberattacks on organizations — sometimes making the latter unwitting accomplices in crimes.

Introducing — Kaspersky Next: a new portfolio of security solutions

Let’s talk about our updated line of corporate security solutions.

Beekeeper vs. cybercrime

Cybersecurity lessons from the movie “The Beekeeper”.

CVE-2024-3094: malicious code in Linux distributions

Malicious code discovered in Linux distributions

A backdoor implanted into XZ Utils has found its way into popular Linux distributions.

Apple CPU encryption hack

We review a recent research paper highlighting a major hardware vulnerability in Apple M1, M2, and M3 CPUs.

Eavesdropping on keyboard keystrokes

A recent study shows how it’s possible to identify typed text from the sound of keystrokes — even in far-from-ideal environments.

Ways to detect and curb Living off the Land (LotL) attacks

How to prepare for Living Off the Land (LotL) attacks

To go undetected, attackers can operate in your network without any malware at all. How to detect them and prevent damage?

What commercial spyware is, and what different types there are

The most notorious instances of commercial spyware

Commercial spyware — what it is, how it infiltrates devices, what it can do once inside, and how to defend against it.

What is SIM swapping, and how does it threaten business?

What SIM swapping is, and why business should care

SIM swap fraud is back in vogue. We explain what it is, the danger it poses to organizations, and how to guard against such attacks.

PrintListener: remote fingerprint theft

Researchers claim to have found a way to recover a fingerprint by… eavesdropping on a user swiping a finger across the screen!

Credential phishing targets ESPs through ESPs

Recursive credential phishing for ESPs

Cybercriminals prey on access to mailing tools by sending phishing emails through these same tools.

Ransomware: the most high-profile attacks of 2023

A look at the biggest ransomware attacks of 2023.

KeyTrap attack can take out a DNS server

KeyTrap: how to break a DNS server with a single packet

The KeyTrap DoS attack, which can disable DNS servers with a single malicious packet exploiting a vulnerability in DNSSEC.

How cybercriminals steal advertising budgets, advertising mailouts, and websites, and how to protect them.

Five cyberattacks on marketing departments

Why cybercriminals want to attack PR and marketing staff and, crucially, how to protect your company from financial and reputational harm.

What kind of education does a cybersecurity specialist need?

Higher Education and Cybersecurity

Our colleagues conducted a study in which, among other things, they assessed how education in the field of information security relates to a career in that field.

Ambient light sensor as a spy tool

A fresh study of some unexpected properties of a standard feature of all modern smartphones and tablets.

CVE-2023-6246, vulnerability in the glibc library

Glibc library vulnerability published

A vulnerability in the glibc library affects most major Linux distributions.

What embedded systems are and how to protect them

What kind of security do embedded systems need?

Features of embedded systems and suitable protection methods for them.

Authentication bypass exploit in GoAnywhere MFT

Critical vulnerability exploit in GoAnywhere MFT

Time to update Fortra GoAnywhere MFT: an exploit has been developed for a critical vulnerability that allows attackers to bypass authentication and create admin accounts.

37C3: how ethical hackers broke DRM on trains

Hacking a train: a 37С3 talk

Ethical hackers told 37C3 how they found a few eye-openers while breaking DRM to fix trains.

Privacy & Kids