Greetings from London

Greetings from London – or more specifically from RSA Europe 2008. Denis, Andrei, Roel and I are all here at this year’s conference which is dedicated to Alan Turing, the great British mathematician and cryptographer.

If you keep your ears open, the names you’ll hear most frequently are Turing, Enigma, and Bruce Schneier. The conference includes a display of cipher machines from a range of eras and countries, including the Enigma machine whose code Turing helped to break. Needless to say, there’s no shortage of people wanting to take a look!

Not surprisingly, we were particularly interested in the Fialka machine from the Soviet era – it was developed in the Fifties, and the codes it generates still hasn’t been cracked to this day.

Bruce Schneier’s been addressing the issue of privacy in the modern world. We decided not to waste our time enlightening him about what we’re smoking over at Kaspersky; instead, our discussion turned to a very interesting presentation by Amichai Shulman from Imperva called “Web Application Security and Search Engines – beyond Google Hacking”. The conference has also covered new methods for testing antivirus solutions which is, as ever, a hot topic. On a similar note, a lot of the RSA delegates will be moving on from London to Oxford for a meeting of AMTSO, the organization which brings together antivirus companies and independent testers. I’ll be making my way back to Moscow, but Denis and Roel will be staying on to represent Kaspersky Lab at the AMTSO meeting.

Greetings from London

Your email address will not be published.



The SessionManager IIS backdoor

In early 2022, we investigated an IIS backdoor called SessionManager. It has been used against NGOs, government, military and industrial organizations in Africa, South America, Asia, Europe, Russia and the Middle East.

APT ToddyCat

ToddyCat is a relatively new APT actor responsible for multiple sets of attacks against high-profile entities in Europe and Asia. Its main distinctive signs are two formerly unknown tools that we call ‘Samurai backdoor’ and ‘Ninja Trojan’.

WinDealer dealing on the side

We have discovered that malware dubbed WinDealer, spread by Chinese-speaking APT actor LuoYu, has an ability to perform intrusions through a man-on-the-side attack.

APT trends report Q1 2022

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q1 2022.

Subscribe to our weekly e-mails

The hottest research right in your inbox