Exploits and vulnerabilities in Q4 2024
This report provides statistics on vulnerabilities and exploits and discusses the most frequently exploited vulnerabilities in Q4 2024.
Vulnerability reports
- APT reports
- Archive
- Crimeware reports
- DDoS reports
- Events
- Incidents
- Industrial threats
- Internal threats reports
- Kaspersky Security Bulletin
- Malware descriptions
- Malware reports
- Opinion
- Publications
- Research
- SAS
- Security technologies
- SOC, TI and IR posts
- Software
- Spam and phishing
- Spam and phishing reports
Vulnerability reports
Vulnerability reports
- APT reports
- Archive
- Crimeware reports
- DDoS reports
- Events
- Incidents
- Industrial threats
- Internal threats reports
- Kaspersky Security Bulletin
- Malware descriptions
- Malware reports
- Opinion
- Publications
- Research
- SAS
- Security technologies
- SOC, TI and IR posts
- Software
- Spam and phishing
- Spam and phishing reports
Subscribe
Reports
GOFFEE continues to attack organizations in Russia
Kaspersky researchers analyze GOFFEE’s campaign in H2 2024: the updated infection scheme, new PowerModul implant, switch to a binary Mythic agent.
Operation ForumTroll: APT attack with Google Chrome zero-day exploit chain
Kaspersky GReAT experts discovered a complex APT attack on Russian organizations dubbed Operation ForumTroll, which exploits zero-day vulnerabilities in Google Chrome.
SideWinder targets the maritime and nuclear sectors with an updated toolset
In this article, we discuss the tools and TTPs used in the SideWinder APT’s attacks in H2 2024, as well as shifts in its targets, such as an increase in attacks against the maritime and logistics sectors.
EAGERBEE, with updated and novel components, targets the Middle East
Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.
Subscribe to our weekly e-mails
The hottest research right in your inbox
