All publications

Reports

Kaspersky analyzes SideWinder APT’s recent activity: new targets in the MiddleEast and Africa, post-exploitation tools and techniques.

Kaspersky shares insights into the activity and TTPs of the BlindEagle APT, which targets organizations and individuals in Colombia, Ecuador, Chile, Panama and other Latin American countries.

Kaspersky has identified a new EastWind campaign targeting Russian organizations and using CloudSorcerer as well as APT31 and APT27 tools.

The report features the most significant developments relating to APT groups in Q2 2024, including the new backdoor in Linux utility XZ, a new RAT called SalmonQT, and hacktivist activity.

Archive

Mobile subscription Trojans and their little tricks

A new secret stash for “fileless” malware

APT trends report Q1 2022

DDoS attacks in Q1 2022

How to recover files encrypted by Yanluowang

Emotet modules and recent attacks

The State of Stalkerware in 2021

A Bad Luck BlackCat

Spring4Shell (CVE-2022-22965): details and mitigations

Lazarus Trojanized DeFi app for delivering malware

Phishing-kit market: what’s inside “off-the-shelf” phishing packages

CVE-2022-0847 aka Dirty Pipe vulnerability in Linux kernel

Webinar on cyberattacks in Ukraine – summary and Q&A

Threat landscape for industrial automation systems, H2 2021

Elections GoRansom – a smoke screen for the HermeticWiper attack

Keyloggers: How they work and how to detect them (Part 1)

Scammers’ delivery service: exclusively dangerous

RansomEXX Trojan attacks Linux systems

Subscribe

Reports

Beyond the Surface: the evolution and expansion of the SideWinder APT group

BlindEagle flying high in Latin America

EastWind campaign: new CloudSorcerer attacks on government organizations in Russia

APT trends report Q2 2024

Subscribe to our weekly e-mails