Vulnerabilities and exploits – Page 6

If one sheep leaps over the ditch…

Posted on December 5, 2022 by GReAT

In this report, Kaspersky researchers discuss propagation methods of several ransomware families, and a vulnerable driver abuse case that may become a trend. Continue reading If one sheep leaps over the ditch…→

Kaspersky Security Bulletin 2022. Statistics

Posted on December 1, 2022 by AMR

Key statistics for 2022: ransomware, trojan bankers, miners and other financial malware, zero-day vulnerabilities and exploits, web attacks, threats for macOS and IoT. Continue reading Kaspersky Security Bulletin 2022. Statistics→

ICS cyberthreats in 2023 – what to expect

Posted on November 22, 2022 by Evgeny Goncharov

The coming year looks to be much more complicated. In the post we share some of our thoughts on potential developments of 2023, though we cannot claim to be providing either a complete picture or a high degree of precision. Continue reading ICS cyberthreats in 2023 – what to expect→

IT threat evolution in Q3 2022. Non-mobile statistics

Posted on November 18, 2022 by AMR

PC malware statistics for Q3 2022 includes data on miners, ransomware, banking Trojans, and other threats to Windows, macOS and IoT devices. Continue reading IT threat evolution in Q3 2022. Non-mobile statistics→

Advanced threat predictions for 2023

Posted on November 14, 2022 by GReAT

We polled our experts from the GReAT team and have gathered a small number of key insights about what APT actors are likely to focus on in 2023. Continue reading Advanced threat predictions for 2023→

The state of cryptojacking in the first three quarters of 2022

Posted on November 10, 2022 by Dmitry Kondratyev, Andrey Ivanov

In 2022 cryptocurrencies dropped, but cryptojacking (illicit cryptocurrency mining) activity grew. In this report we provide statistics on cryptojacking in 2022. Continue reading The state of cryptojacking in the first three quarters of 2022→

Server-side attacks, C&C in public clouds and other MDR cases we observed

Posted on November 2, 2022 by Sergey Soldatov

This report describes several interesting incidents observed by the Kaspersky Managed Detection and Response (MDR) team. We hope that it helps you to stay up to date on the modern threat landscape and to be better prepared for attacks. Continue reading Server-side attacks, C&C in public clouds and other MDR cases we observed→

Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)

Posted on October 13, 2022 by GReAT

We investigated CVE-2022-41352 and were able to confirm that unknown APT groups have actively been exploiting this vulnerability in the wild, one of which is systematically infecting servers in Central Asia. Continue reading Ongoing exploitation of CVE-2022-41352 (Zimbra 0-day)→

External attack surface and ongoing cybercriminal activity in APAC region

Posted on September 19, 2022 by Kaspersky Security Services

We analyze external threats for organizations in APAC region based on the data collected by Kaspersky Digital Footprint Intelligence service. Continue reading External attack surface and ongoing cybercriminal activity in APAC region→

The nature of cyber incidents

Posted on September 5, 2022 by Kaspersky Security Services, Kaspersky GERT

In this report Kaspersky provides incident response statistics for 2021, as well as conclusions based on investigations of the real incidents. Continue reading The nature of cyber incidents→