Month: February 2017

In 2016, the growth in the number of advertising Trojans capable of exploiting super-user rights continued. Throughout the year it was the No. 1 threat, and we see no sign of this trend changing.

2016 saw a variety of changes in spam flows, with the increase in the number of malicious mass mailings containing ransomware being the most significant. These programs are readily available on the black market, and in 2017 the volume of malicious spam is unlikely to fall.

2026
2025
2024
2023
2022
2021
2020
2019
2018
2017
2016
2015
2014
2013
2012
2011
2010
2009
2008
2007
2006
2005
2004
2003
2002
2001

Authors Categories Tags

Reports

Cloud Atlas attacks the public sector and diplomatic structures of Russia and Belarus, using ReverseSocks, SSH, and Tor for persistence in infected systems and its new tool, PowerCloud.

Kaspersky researchers analyze a range of new PebbleDash-based tools used in recent Kimsuky campaigns and reveal their connection to the AppleSeed malware cluster.

Kaspersky researchers uncovered malicious wheel packages in PyPI that targeted both Windows and Linux and contained a dropper delivering malware dubbed ZiChatBot. We attribute this activity to OceanLotus APT.

Kaspersky researchers analyze updated CoolClient backdoor and new tools and scripts used in HoneyMyte (aka Mustang Panda or Bronze President) APT campaigns, including three variants of a browser data stealer.

February 2017

Mobile malware evolution 2016

How Security Products are Tested – Part 1

Financial cyberthreats in 2016

New(ish) Mirai Spreader Poses New Risks

Spam and phishing in 2016

Dissecting Malware

Mobile apps and stealing a connected car

Breaking The Weakest Link Of The Strongest Chain

A look into the Russian-speaking ransomware ecosystem

Features of secure OS realization

Fileless attacks against enterprise networks

Rocket AI and the next generation of AV software

KopiLuwak: A New JavaScript Payload from Turla

DDoS attacks in Q4 2016

How to succeed in online investigations and digital forensics

Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs

Mem3nt0 mori – The Hacking Team is back!

The Crypto Game of Lazarus APT: Investors vs. Zero-days

Grandoreiro, the global trojan with grandiose goals

SAS CTF and the many ways to persist a kernel shellcode on Windows 7

Reports

Cloud Atlas activity in the second half of 2025 and early 2026: new tools and a new payload

Kimsuky targets organizations with PebbleDash-based tools

OceanLotus suspected of using PyPI to deliver ZiChatBot malware

HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns

Subscribe to our weekly e-mails