Vulnerabilities and exploits – Page 22

WannaCry ransomware used in widespread attacks all over the world

Posted on May 12, 2017 by GReAT

Earlier today, our products detected and successfully blocked a large number of ransomware attacks around the world. In these attacks, data is encrypted with the extension “.WCRY” added to the filenames. Our analysis indicates the attack, dubbed “WannaCry”, is initiated through an SMBv2 remote code execution in Microsoft Windows. Continue reading WannaCry ransomware used in widespread attacks all over the world→

Exploits: how great is the threat?

Posted on April 20, 2017 by Kaspersky Lab

How serious, really, is the danger presented by exploits? The recent leak of an exploit toolset allegedly used by the infamous Equation Group suggests it’s time to revisit that question. Using our own telemetry data and intelligence reports as well as publicly available information, we’ve looked at the top vulnerabilities and applications exploited by attackers. Continue reading Exploits: how great is the threat?→

InPage zero-day exploit used to attack financial institutions in Asia

Posted on November 23, 2016 by Denis Legezo

In September 2016, while researching a new wave of attacks, we found an interesting target which appeared to constantly receive spearphishes, a practice we commonly describe as a “magnet of threats”. Among all the attacks received by this magnet of threats, which included various older Office exploits such as CVE-2012-0158, one of them attracted our attention. Continue reading InPage zero-day exploit used to attack financial institutions in Asia→

IT threat evolution Q3 2016. Statistics

Posted on November 3, 2016 by Roman Unuchek

The most popular mobile Trojan in the third quarter of 2016 was Trojan-Banker.AndroidOS.Svpeng.q. During the quarter, the number of users attacked by it grew almost eightfold. Continue reading IT threat evolution Q3 2016. Statistics→

IT threat evolution Q3 2016

Posted on November 3, 2016 by David Emm

Trojan-Ransom.AndroidOS.Fusob.h remained the most popular mobile Trojan-Ransomware in the third quarter, accounting for nearly 53% of users attacked by mobile ransomware. Continue reading IT threat evolution Q3 2016→

The Equation Giveaway

Posted on August 16, 2016 by GReAT

August 13, 2016 saw the beginning of a truly bizarre episode. A new identity going under the name ‘ShadowBrokers’ came onto the scene claiming to possess files belonging to the apex predator of the APT world, the Equation Group. Continue reading The Equation Giveaway→

Conference Report: HITCON 2016 in Taipei

Posted on August 15, 2016 by Suguru Ishimaru

Hacks in Taiwan Conference (HITCON) 2016 was held on 22 – 23 July 2016 in Taipei, Taiwan. The theme of HITCON Community this year is “Security or Nothing”, focusing on hacking techniques and information security. About 1,500 participants attended to… Read Full Article Continue reading Conference Report: HITCON 2016 in Taipei→

IT threat evolution in Q2 2016. Statistics

Posted on August 11, 2016 by Roman Unuchek

In the second quarter of 2016, Kaspersky Lab’s web antivirus detected 16,119,489 unique malicious objects: scripts, exploits, executable files, etc. 54,539,948 unique URLs were recognized as malicious by web antivirus components. Continue reading IT threat evolution in Q2 2016. Statistics→

IT threat evolution in Q2 2016. Overview

Posted on August 11, 2016 by David Emm

Bankers and encryptors, ransomware and spyware, old and new exploits; APT attacks, ATM infection, spear phishing and fraud targeting large numbers of users – cybercriminals continue their hunt for money and information Continue reading IT threat evolution in Q2 2016. Overview→