VIRUS-NEWS
IT threat evolution Q1 2023
by David Emm7 Jun 2023 at 8:00am
Recent BlueNoroff and Roaming Mantis activities, new APT related to the Russo-Ukrainian conflict, ChatGPT and threat intelligence, malvertising through search engines, cryptocurrency theft campaign and fake Tor browser
IT threat evolution Q1 2023. Mobile statistics
by Anton Kivva7 Jun 2023 at 8:00am
The smartphone threat statistics for Q1 2023 includes data for Android malware, adware, banking Trojans and ransomware.
IT threat evolution in Q1 2023. Non-mobile statistics
by AMR7 Jun 2023 at 8:00am
PC malware statistics for the Q1 2023 includes data on miners, ransomware, banking Trojans, and other threats to Windows, macOS and IoT devices.
Satacom delivers browser extension that steals cryptocurrency
by Haim Zigel, Oleg Kupreev5 Jun 2023 at 10:00am
A recent campaign by Satacom downloader is delivering a cryptocurrency-stealing extension for Chromium-based browsers, such as Chrome, Brave and Opera.
In search of the Triangulation: triangle_check utility
by Igor Kuznetsov, Valentin Pashkov, Leonid Bezvershenko, Georgy Kucherin2 Jun 2023 at 12:16pm
We developed a dedicated utility to scan the iOS backups and run all the checks for Operation Triangulation indicators.
Operation Triangulation: iOS devices targeted with previously unknown malware
by Igor Kuznetsov, Valentin Pashkov, Leonid Bezvershenko, Georgy Kucherin1 Jun 2023 at 12:36pm
While monitoring the traffic of our own corporate Wi-Fi network, we noticed suspicious activity that originated from several iOS-based phones. We created offline backups of the devices, inspected them and discovered traces of compromise.
Meet the GoldenJackal APT group. Don?t expect any howls
by Giampaolo Dedola23 May 2023 at 8:00am
GoldenJackal is an APT group, active since 2019, that usually targets government and diplomatic entities in the Middle East and South Asia. The main feature of this group is a specific toolset of .NET malware, JackalControl, JackalWorm, JackalSteal, JackalPerInfo and JackalScreenWatcher.
CloudWizard APT: the bad magic story goes on
by Leonid Bezvershenko, Georgy Kucherin, Igor Kuznetsov19 May 2023 at 10:30am
Kaspersky analysis of the CloudWizard APT framework used in a campaign in the region of the Russo-Ukrainian conflict.
Minas ? on the way to complexity
by Ilya Borisov, Vasily Berdnikov17 May 2023 at 10:00am
Kaspersky analysis of a complicated multi-stage attack dubbed Minas that features a number of detection evasion and persistence techniques and results in a cryptocurrency miner infection.
The nature of cyberincidents in 2022
by Kaspersky GERT, Kaspersky Security Services16 May 2023 at 8:00am
Kaspersky Incident Response report for 2022: incident response statistics, key trends and conclusions, expert recommendations.