All publications

Reports

Kaspersky analyzes SideWinder APT’s recent activity: new targets in the MiddleEast and Africa, post-exploitation tools and techniques.

Kaspersky shares insights into the activity and TTPs of the BlindEagle APT, which targets organizations and individuals in Colombia, Ecuador, Chile, Panama and other Latin American countries.

Kaspersky has identified a new EastWind campaign targeting Russian organizations and using CloudSorcerer as well as APT31 and APT27 tools.

The report features the most significant developments relating to APT groups in Q2 2024, including the new backdoor in Linux utility XZ, a new RAT called SalmonQT, and hacktivist activity.

Archive

Whispers from the Dark Web Cave. Cyberthreats in the Middle East

Awaken Likho is awake: new techniques of an APT group

Scam Information and Event Management

Finding a needle in a haystack: Machine learning at the forefront of threat hunting research

Key Group: another ransomware group using leaked builders

Threat landscape for industrial automation systems, Q2 2024

From 12 to 21: how we discovered connections between the Twelve and BlackJack groups

Web tracking report: who monitored users’ online activities in 2023–2024 the most

How the Necro Trojan infiltrated Google Play, again

-=TWELVE=- is back

Exotic SambaSpy is now dancing with Italian users

Loki: a new private agent for the popular Mythic framework

Tropic Trooper spies on government entities in the Middle East

Mallox ransomware: in-depth analysis and evolution

A deep dive into the most interesting incident response cases of last year

Keyloggers: How they work and how to detect them (Part 1)

Scammers’ delivery service: exclusively dangerous

RansomEXX Trojan attacks Linux systems

Subscribe

Reports

Beyond the Surface: the evolution and expansion of the SideWinder APT group

BlindEagle flying high in Latin America

EastWind campaign: new CloudSorcerer attacks on government organizations in Russia

APT trends report Q2 2024

Subscribe to our weekly e-mails