Web threats – Page 5 – WindowsTechs.com

DDoS attacks in Q2 2022

Posted on August 3, 2022 by Alexander Gutnikov, Oleg Kupreev, Yaroslav Shmelev

Politically-motivated cyberattacks dominated the DDoS landscape in the second quarter of 2022 just as they did in Q1. Also, we saw the continuation of a trend that began in spring: an increase in superlong attacks. Continue reading DDoS attacks in Q2 2022→

The SessionManager IIS backdoor: a possibly overlooked GELSEMIUM artefact

Posted on June 30, 2022 by Pierre Delcher

In early 2022, we investigated an IIS backdoor called SessionManager. It has been used against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East. Continue reading The SessionManager IIS backdoor: a possibly overlooked GELSEMIUM artefact→

Threat landscape for industrial automation systems, H2 2021

Posted on March 3, 2022 by Kaspersky ICS CERT

By 2021 everyone got used to pandemic limitations – industrial organization employees and IT security professionals and threat actors. If we compare the numbers from 2020 and 2021, we see that 2021 looks more stable, particularly in H2. Continue reading Threat landscape for industrial automation systems, H2 2021→

DDoS attacks in Q4 2021

Posted on February 10, 2022 by Alexander Gutnikov, Oleg Kupreev, Yaroslav Shmelev

In Q4 2021, as expected, the number of DDoS attacks rose, while DDoS botnets weaponized a Log4Shell vulnerability. In this report, we present the main DDoS trends and statistics. Continue reading DDoS attacks in Q4 2021→

Telehealth: A New Frontier in Medicine—and Security

Posted on February 1, 2022 by Maria Namestnikova

This report contains statistics and observations on vulnerabilities, phishing schemes and malware related to telehealth. Continue reading Telehealth: A New Frontier in Medicine—and Security→

Choosing Christmas gifts for kids: Squid Game and Huggy Wuggy are trending

Posted on December 22, 2021 by Anna Larkina

Kaspersky Safe Kids statistics on categories of websites, mobile apps and YouTube searches, plus some suggestions on what to buy children for Christmas this year. Continue reading Choosing Christmas gifts for kids: Squid Game and Huggy Wuggy are trending→

Answering Log4Shell-related questions

Posted on December 20, 2021 by Kaspersky

Check out the answers to some of users’ biggest security questions about the Log4Shell vulnerabilities (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105). Continue reading Answering Log4Shell-related questions→

Kaspersky Security Bulletin 2021. Statistics

Posted on December 15, 2021 by Kaspersky

Key statistics for 2021: miners, ransomware, trojan bankers and other financial malware, zero-day vulnerabilities and exploits, web attacks, threats for macOS and IoT. Continue reading Kaspersky Security Bulletin 2021. Statistics→

Kaspersky Security Bulletin 2021. Statistics

Posted on December 15, 2021 by Kaspersky

Owowa: the add-on that turns your OWA into a credential stealer and remote access panel

Posted on December 14, 2021 by Paul Rascagneres, Pierre Delcher

We found a suspicious binary and determined it as an IIS module, aimed at stealing credentials and enabling remote command execution from OWA. We named the malicious module ‘Owowa’, Continue reading Owowa: the add-on that turns your OWA into a credential stealer and remote access panel→