Securelist - Kaspersky Lab's cyberthreat research and reports

Coinvault, the court case

Jul 12, 2018, 6:00 pm

Today, after almost 3 years of waiting, it was finally the day of the trial. In the Netherlands, where the whole case took place, the hearings are open to the public. Meaning anyone who is interested can visit. And it was quite busy. Read Full Article

Research

Delving deep into VBScript

Jul 3, 2018, 1:00 pm

Boris Larin

In late April we found and wrote a description of CVE-2018-8174, a new zero-day vulnerability for Internet Explorer that uses a well-known technique from the PoC exploit CVE-2014-6332. But whereas CVE-2014-6332 was aimed at integer overflow exploitation for writing to arbitrary memory locations, my interest lay in how this technique was adapted to exploit the use-after-free vulnerability. Read Full Article

Research

Pbot: evolving adware

Jun 26, 2018, 10:00 am

Anton V. Ivanov

It was more than a year ago that we detected the first member of Pbot family. Since then, we have encountered several modifications of the program, one of which went beyond adware by installing and running a hidden miner on victim computers. Read Full Article

Software

Modern OSs for embedded systems

Jun 20, 2018, 10:00 am

Alexander Shadrin, Andrey Nikishin

At Kaspersky Lab we analyze the technologies available on cybersecurity market and this time we decided to look at what OS developers are offering for embedded systems (or, in other words, the internet of things). Our primary interest is how and to what degree these OSs can solve cybersecurity-related issues. Read Full Article

APT reports

LuckyMouse hits national data center to organize country-level waterholing campaign

Jun 13, 2018, 10:00 am

Denis Legezo

In March 2018 we detected an ongoing campaign targeting a national data center in the Central Asia that we believe has been active since autumn 2017. The choice of target made this campaign especially significant – it meant the attackers gained access to a wide range of government resources at one fell swoop. Read Full Article

Research

A MitM extension for Chrome

Jun 6, 2018, 10:00 am

Vyacheslav Bogdanov

Browser extensions make our lives easier: they hide obtrusive advertising, translate text, help us choose in online stores, etc. There are also less desirable extensions, including those that bombard us with advertising or collect information about our activities. These pale into insignificance, however, when compared to extensions whose main aim is to steal money. Read Full Article

Research

FIFA public Wi-Fi guide: which host cities have the most secure networks?

Jun 4, 2018, 11:11 am

Denis Legezo

We all know how easy it is for users to connect to open Wi-Fi networks in public places. A lack of essential traffic encryption for Wi-Fi networks where official and global activities are taking place – such as at locations around the forthcoming FIFA World Cup 2018 – offers especially fertile ground for criminals. Read Full Article

Publications

Netkids

Jun 1, 2018, 9:00 am

Anna Larkina

Children today are completely at home in the digital space. They use digital diaries and textbooks at school, communicate via instant messaging, play games on mobile devices (not to mention PCs and consoles), and create mini masterpieces on tablets and laptops. This total immersion in the digital universe is a concern for many parents, but if they want their child to spend time online safely and usefully, they must not only understand the basic concepts of digital security and have a grasp of the threats, but also be able to explain them to their kid. Read Full Article

Research

Trojan watch

May 29, 2018, 10:00 am

Sergey Lurye, Boris Stepanov

We continue to research how proliferation of IoT devices affects the daily lives of users and their information security. In our previous study, we touched upon ways of intercepting authentication data using single-board microcomputers. This time, we turned out attention to wearable devices: smartwatches and fitness trackers. Or more precisely, the accelerometers and gyroscopes inside them. Read Full Article