Microsoft Windows – Page 2 – WindowsTechs.com

SAS CTF and the many ways to persist a kernel shellcode on Windows 7

Posted on October 17, 2024 by Igor Kuznetsov, Boris Larin

In this article we solve the most difficult SAS CTF challenge based on the APT technique to introduce and persist a kernel shellcode on Windows 7. Continue reading SAS CTF and the many ways to persist a kernel shellcode on Windows 7→

Posted on October 7, 2024 by Kaspersky

Kaspersky experts have discovered a new version of the APT Awaken Likho RAT Trojan, which uses AutoIt scripts and the MeshCentral system to target Russian organizations. Continue reading Awaken Likho is awake: new techniques of an APT group→

Posted on October 1, 2024 by Megan Crouse

Version 24H2 adds the sudo command and alerts users when an application accesses their physical location. Microsoft polished other security features, too. Continue reading What Is Inside Microsoft’s Major Windows 11 Update?→

Posted on October 1, 2024 by Kaspersky

Kaspersky experts studied the activity of Key Group, which utilizes publicly available builders for ransomware and wipers, as well as GitHub and Telegram. Continue reading Key Group: another ransomware group using leaked builders→

Posted on September 3, 2024 by Maya Posch

Once the nerve center of Windows operating systems, the Control Panel and its multitude of applets has its roots in the earliest versions of Windows. From here users could use …read more Continue reading A Windows Control Panel Retrospective Amidst a Concerning UX Shift→

Posted on August 21, 2024 by Vitaly Morgunov, Alexander Kolesnikov

The report contains statistics on vulnerabilities and exploits, with an analysis of interesting vulnerabilities found in Q2 2024. Continue reading Exploits and vulnerabilities in Q2 2024→

Posted on August 15, 2024 by Elsayed Elrefaei, AbdulRhman Alfaifi

Kaspersky researchers discovered Tusk campaign with ongoing activity that uses Danabot and StealC infostealers and clippers to obtain cryptowallet credentials and system data. Continue reading Tusk: unraveling a complex infostealer campaign→

Posted on August 9, 2024 by Cedric Pernet

Read more about a China-aligned cyberespionage threat actor dubbed StormBamboo, also known as Evasive Panda, which compromised an Internet Service Provider and infected targets with malware. Continue reading StormBamboo Compromises ISP, Spreads Malware→

Posted on August 1, 2024 by GReAT

Kaspersky researchers investigated three ransomware groups that tapped newly built malware samples based on Babuk, Lockbit, Chaos and others, while lacking professional resources. Continue reading How “professional” ransomware variants boost cybercrime groups→

Posted on June 3, 2024 by AMR

In this report, Kaspersky shares non-mobile malware statistics for Q1 2024, including ransomware, miner and macOS malware statistics. Continue reading IT threat evolution in Q1 2024. Non-mobile statistics→