Unix and macOS malware – WindowsTechs.com

Stealer here, stealer there, stealers everywhere!

Posted on October 21, 2024 by GReAT

Kaspersky researchers investigated a number of stealer attacks over the past year, and they are now sharing some details on the new Kral stealer, recent AMOS version and Vidar delivering ACR stealer. Continue reading Stealer here, stealer there, stealers everywhere!→

IT threat evolution in Q2 2024. Non-mobile statistics

Posted on September 3, 2024 by AMR

This report presents statistics on PC threats for Q2 2024, including data on ransomware, miners, threats to macOS and IoT devices. Continue reading IT threat evolution in Q2 2024. Non-mobile statistics→

IT threat evolution Q2 2024

Posted on September 3, 2024 by David Emm

In this report, Kaspersky researchers explore the most significant attacks of Q2 2024 that used a XZ backdoor, the LockBit builder, ShrinkLocker ransomware, etc. Continue reading IT threat evolution Q2 2024→

HZ Rat backdoor for macOS attacks users of China’s DingTalk and WeChat

Posted on August 27, 2024 by Sergey Puzan

Kaspersky experts discovered a macOS version of the HZ Rat backdoor, which collects user data from WeChat and DingTalk messengers. Continue reading HZ Rat backdoor for macOS attacks users of China’s DingTalk and WeChat→

How “professional” ransomware variants boost cybercrime groups

Posted on August 1, 2024 by GReAT

Kaspersky researchers investigated three ransomware groups that tapped newly built malware samples based on Babuk, Lockbit, Chaos and others, while lacking professional resources. Continue reading How “professional” ransomware variants boost cybercrime groups→

XZ backdoor: Hook analysis

Posted on June 24, 2024 by Anderson Leite, Sergey Belov

In this article, we analyze XZ backdoor behavior inside OpenSSH, after it has achieved RSA-related function hook. Continue reading XZ backdoor: Hook analysis→

IT threat evolution Q1 2024

Posted on June 3, 2024 by David Emm

In this report, we review the most significant malware-related events of Q1 2024: the disclosure of the hardware vulnerability used in Operation Triangulation, a lightweight method to detect iOS malware and DinodasRAT Linux implant. Continue reading IT threat evolution Q1 2024→

IT threat evolution in Q1 2024. Non-mobile statistics

Posted on June 3, 2024 by AMR

In this report, Kaspersky shares non-mobile malware statistics for Q1 2024, including ransomware, miner and macOS malware statistics. Continue reading IT threat evolution in Q1 2024. Non-mobile statistics→

XZ backdoor story – Initial analysis

Posted on April 12, 2024 by GReAT

Kaspersky analysis of the backdoor recently found in XZ, which is used in many popular Linux distributions and in OpenSSH server process. Continue reading XZ backdoor story – Initial analysis→

DinodasRAT Linux implant targeting entities worldwide

Posted on March 28, 2024 by Anderson Leite, Lisandro Ubiedo

In this article, we share our analysis of a recent version of the DinodasRAT implant for Linux, which may have been active since 2022. Continue reading DinodasRAT Linux implant targeting entities worldwide→