Year: 2025 | Page 6 | Securelist

Reports

Kaspersky GReAT experts dive deep into the BlueNoroff APT’s GhostCall and GhostHire campaigns. Extensive research detailing multiple malware chains targeting macOS, including a stealer suite, fake Zoom and Microsoft Teams clients and ChatGPT-enhanced images.

Kaspersky researchers discovered previously unidentified commercial Dante spyware developed by Memento Labs (formerly Hacking Team) and linked it to the ForumTroll APT attacks.

Kaspersky GReAT experts describe the latest Mysterious Elephant APT activity. The threat actor exfiltrates data related to WhatsApp and employs tools such as BabShell and MemLoader HidenDesk.

According to Kaspersky, Librarian Ghouls APT continues its series of attacks on Russian entities. A detailed analysis of a malicious campaign utilizing RAR archives and BAT scripts.

Archive

Mobile malware evolution in 2024

The SOC files: Chasing the web shell

Exploits and vulnerabilities in Q4 2024

The GitVenom campaign: cryptocurrency theft using GitHub

Angry Likho: Old beasts in a new forest

Managed detection and response in 2024

Spam and phishing in 2024

StaryDobry ruins New Year’s Eve, delivering miner instead of presents

Investors, Trump and the Illuminati: What the “Nigerian prince” scams became in 2024

Take my money: OCR crypto stealers in Google Play and App Store

One policy to rule them all

No need to RSVP: a closer look at the Tria stealer campaign

Threat predictions for industrial enterprises 2025

Mercedes-Benz Head Unit security research report

EAGERBEE, with updated and novel components, targets the Middle East

Keyloggers: How they work and how to detect them (Part 1)

Scammers’ delivery service: exclusively dangerous

RansomEXX Trojan attacks Linux systems

Subscribe

Reports

Crypto wasted: BlueNoroff’s ghost mirage of funding and jobs

Mem3nt0 mori – The Hacking Team is back!

Mysterious Elephant: a growing threat

Sleep with one eye open: how Librarian Ghouls steal data by night

Subscribe to our weekly e-mails