Exploits and vulnerabilities in Q4 2024
This report provides statistics on vulnerabilities and exploits and discusses the most frequently exploited vulnerabilities in Q4 2024.
Vulnerability reports
- APT reports
- Archive
- Crimeware reports
- DDoS reports
- Events
- Incidents
- Industrial threats
- Internal threats reports
- Kaspersky Security Bulletin
- Malware descriptions
- Malware reports
- Opinion
- Publications
- Research
- SAS
- Security technologies
- SOC, TI and IR posts
- Software
- Spam and phishing
- Spam and phishing reports
Vulnerability reports
Vulnerability reports
- APT reports
- Archive
- Crimeware reports
- DDoS reports
- Events
- Incidents
- Industrial threats
- Internal threats reports
- Kaspersky Security Bulletin
- Malware descriptions
- Malware reports
- Opinion
- Publications
- Research
- SAS
- Security technologies
- SOC, TI and IR posts
- Software
- Spam and phishing
- Spam and phishing reports
Subscribe
Reports
SideWinder targets the maritime and nuclear sectors with an updated toolset
In this article, we discuss the tools and TTPs used in the SideWinder APT’s attacks in H2 2024, as well as shifts in its targets, such as an increase in attacks against the maritime and logistics sectors.
EAGERBEE, with updated and novel components, targets the Middle East
Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.
BellaCPP: Discovering a new BellaCiao variant written in C++
While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed “BellaCPP”.
Lazarus group evolves its infection chain with old and new malware
Lazarus targets employees of a nuclear-related organization with a bunch of malware, such as MISTPEN, LPEClient, RollMid, CookieTime and a new modular backdoor CookiePlus.
Subscribe to our weekly e-mails
The hottest research right in your inbox
