Black Hat USA 2022 and DEF CON 30
Black Hat 2022 USA Briefings wrapped up this past week, along with its sister conference Defcon 30. Coming back from the COVID hiatus, the conferences were enthusiastically full compared to the 2021 ghost town.
Events
- GReAT research
- Vulnerability reports
- SOC, TI and IR posts
- Malware descriptions
- Industrial threats
- Malware reports
- Crimeware reports
- APT reports
- SAS
- Spam and phishing reports
- Spam and phishing
- Incidents
- Research
- Security technologies
- Kaspersky Security Bulletin
- Publications
- Software
- DDoS reports
- Internal threats reports
- Archive
Events
Events
- GReAT research
- Vulnerability reports
- SOC, TI and IR posts
- Malware descriptions
- Industrial threats
- Malware reports
- Crimeware reports
- APT reports
- SAS
- Spam and phishing reports
- Spam and phishing
- Incidents
- Research
- Security technologies
- Kaspersky Security Bulletin
- Publications
- Software
- DDoS reports
- Internal threats reports
- Archive
Reports
Cloud Atlas activity in the second half of 2025 and early 2026: new tools and a new payload
Cloud Atlas attacks the public sector and diplomatic structures of Russia and Belarus, using ReverseSocks, SSH, and Tor for persistence in infected systems and its new tool, PowerCloud.
Kimsuky targets organizations with PebbleDash-based tools
Kaspersky researchers analyze a range of new PebbleDash-based tools used in recent Kimsuky campaigns and reveal their connection to the AppleSeed malware cluster.
OceanLotus suspected of using PyPI to deliver ZiChatBot malware
Kaspersky researchers uncovered malicious wheel packages in PyPI that targeted both Windows and Linux and contained a dropper delivering malware dubbed ZiChatBot. We attribute this activity to OceanLotus APT.
Silver Fox uses the new ABCDoor backdoor to target organizations in Russia and India
The Silver Fox group is targeting companies in Russia and India by impersonating tax authorities to distribute ValleyRAT and the new ABCDoor backdoor.
