All publications

Reports

Kaspersky analyzes SideWinder APT’s recent activity: new targets in the MiddleEast and Africa, post-exploitation tools and techniques.

Kaspersky shares insights into the activity and TTPs of the BlindEagle APT, which targets organizations and individuals in Colombia, Ecuador, Chile, Panama and other Latin American countries.

Kaspersky has identified a new EastWind campaign targeting Russian organizations and using CloudSorcerer as well as APT31 and APT27 tools.

The report features the most significant developments relating to APT groups in Q2 2024, including the new backdoor in Linux utility XZ, a new RAT called SalmonQT, and hacktivist activity.

Archive

From 12 to 21: how we discovered connections between the Twelve and BlackJack groups

Web tracking report: who monitored users’ online activities in 2023–2024 the most

How the Necro Trojan infiltrated Google Play, again

-=TWELVE=- is back

Exotic SambaSpy is now dancing with Italian users

Loki: a new private agent for the popular Mythic framework

Tropic Trooper spies on government entities in the Middle East

Mallox ransomware: in-depth analysis and evolution

A deep dive into the most interesting incident response cases of last year

IT threat evolution in Q2 2024. Non-mobile statistics

IT threat evolution in Q2 2024. Mobile statistics

IT threat evolution Q2 2024

Head Mare: adventures of a unicorn in Russia and Belarus

HZ Rat backdoor for macOS attacks users of China’s DingTalk and WeChat

Memory corruption vulnerabilities in Suricata and FreeRDP

Keyloggers: How they work and how to detect them (Part 1)

Scammers’ delivery service: exclusively dangerous

RansomEXX Trojan attacks Linux systems

Subscribe

Reports

Beyond the Surface: the evolution and expansion of the SideWinder APT group

BlindEagle flying high in Latin America

EastWind campaign: new CloudSorcerer attacks on government organizations in Russia

APT trends report Q2 2024

Subscribe to our weekly e-mails