All publications

Remotely controlled EV home chargers – the threats and vulnerabilities

December 13, 2018, 10:00 am.

There are lots of home charger vendors. Some of them, such as ABB or GE, are well-known brands, but some smaller companies have to add ‘bells and whistles’ to their products to attract customers. One of the most obvious and popular options in this respect is remote control of the charging process. But from our point of view this sort of improvement can make chargers an easy target for a variety of attacks. Read Full Article

Research

Zero-day in Windows Kernel Transaction Manager (CVE-2018-8611)

December 12, 2018, 8:00 am.

Boris Larin, Vladislav Stolyarov, Anton Ivanov

In October 2018, our AEP systems detected an attempt to exploit a vulnerability in the Microsoft Windows. Further analysis led us to uncover a zero-day vulnerability in ntoskrnl.exe. Read Full Article

Incidents

DarkVishnya: Banks attacked through direct connection to local network

December 6, 2018, 10:00 am.

Sergey Golovanov

In 2017-2018, Kaspersky Lab specialists were invited to research a series of cybertheft incidents. Each attack had a common springboard: an unknown device directly connected to the company’s local network. Read Full Article

APT reports

APT review of the year

December 5, 2018, 2:00 pm.

Vicente Diaz, Costin Raiu

What were the most interesting developments in terms of APT activity throughout the year and what can we learn from them? Not an easy question to answer. Still, with the benefit of hindsight, let’s try to approach the problem from different angles to get a better understanding of what went on. Read Full Article

Incidents

KoffeyMaker: notebook vs. ATM

December 4, 2018, 12:00 pm.

Sergey Golovanov

Kaspersky Lab’ experts investigated one such toolkit, dubbed KoffeyMaker, in 2017-2018, when a number of Eastern European banks turned to us for assistance after their ATMs were quickly and almost freely raided. It soon became clear that we were dealing with a black box attack. Read Full Article

Kaspersky Security Bulletin

Kaspersky Security Bulletin 2018. Statistics

December 4, 2018, 10:00 am.

AMR

During the year, Kaspersky Lab solutions repelled 1 876 998 691 attacks launched from online resources located all over the world, 554 159 621 unique malicious objects were detected and 21 643 946 unique URLs were recognized as malicious by web antivirus components. Read Full Article

Kaspersky Security Bulletin

Kaspersky Security Bulletin 2018. Top security stories

December 3, 2018, 10:00 am.

David Emm, Victor Chebyshev

All too often, both rely on manipulating human psychology as a way of compromising entire systems or individual computers. Increasingly, the devices targeted also include those that we don’t consider to be computers – from children’s toys to security cameras. Here is our annual round-up of major incidents and key trends from 2018 Read Full Article

Securelist Archive

Date: December 2018

Remotely controlled EV home chargers – the threats and vulnerabilities

Zero-day in Windows Kernel Transaction Manager (CVE-2018-8611)

DarkVishnya: Banks attacked through direct connection to local network

APT review of the year

KoffeyMaker: notebook vs. ATM

Kaspersky Security Bulletin 2018. Statistics

Kaspersky Security Bulletin 2018. Top security stories

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

2004

2003

2002

2001