Vulnerabilities and exploits – Page 20

APT Trends report Q3 2017

Posted on November 14, 2017 by GReAT

Beginning in the second quarter of 2017, Kaspersky’s Global Research and Analysis Team (GReAT) began publishing summaries of the quarter’s private threat intelligence reports in an effort to make the public aware of what research we have been conducting. This report serves as the next installment, focusing on important reports produced during Q3 of 2017. Continue reading APT Trends report Q3 2017→

IT threat evolution Q3 2017. Statistics

Posted on November 10, 2017 by Roman Unuchek

According to KSN data, Kaspersky Lab solutions detected and repelled 277,646,376 malicious attacks from online resources located in 185 countries all over the world. Continue reading IT threat evolution Q3 2017. Statistics→

IT threat evolution Q3 2017

Posted on November 10, 2017 by David Emm

Our growing dependence on technology, connectivity and data means that businesses present a bigger attack surface than ever. Targeted attackers have become more adept at exploiting their victims’ vulnerabilities to penetrate corporate defences while ‘flying under the radar’. Continue reading IT threat evolution Q3 2017→

Using legitimate tools to hide malicious code

Posted on November 8, 2017 by Anatoly Kazantsev

The authors of malware use various techniques to circumvent defensive mechanisms and conceal harmful activity. One of them is the practice of hiding malicious code in the context of a trusted process. Typically, malware that uses concealment techniques injects its code into a system process, e.g. explorer.exe. But some samples employ other interesting methods. We’re going to discuss one such type of malware. Continue reading Using legitimate tools to hide malicious code→

Using legitimate tools to hide malicious code

Posted on November 8, 2017 by Anatoly Kazantsev

Gaza Cybergang – updated 2017 activity

Posted on October 30, 2017 by GReAT

Gaza cybergang is an Arabic politically motivated cyber criminal group, operating since 2012 and is actively targeting the MENA (Middle East North Africa) region. Gaza cybergang attacks have never slowed down, recent targets by the group does seem to be varied in nature, attackers do not seem to be selectively choosing targets, but rather seeking different kinds of MENA intelligence. Continue reading Gaza Cybergang – updated 2017 activity→

Analyzing an exploit for СVE-2017-11826

Posted on October 26, 2017 by Boris Larin

The latest Patch Tuesday (17 October) brought patches for 62 vulnerabilities, including one that fixed СVE-2017-11826 – a critical zero-day vulnerability used to launch targeted attacks – in all versions of Microsoft Office. The exploit for this vulnerability is an RTF document containing a DOCX document that exploits СVE-2017-11826 in the Office Open XML parser. Continue reading Analyzing an exploit for СVE-2017-11826→

BlackOasis APT and new targeted attacks leveraging zero-day exploit

Posted on October 16, 2017 by GReAT

On October 10, 2017, Kaspersky Lab’s advanced exploit prevention systems identified a new Adobe Flash zero day exploit used in the wild against our customers. The exploit was delivered through a Microsoft Office document and the final payload was the latest version of FinSpy malware. We have reported the bug to Adobe who assigned it CVE-2017-11292 and released a patch earlier today. Continue reading BlackOasis APT and new targeted attacks leveraging zero-day exploit→

BlackOasis APT and new targeted attacks leveraging zero-day exploit

Posted on October 16, 2017 by GReAT