minute read
Authors
A change we made recently to our virus definition for ‘Exploit.HTML.Objdata’ may cause a false positive.
The problem was reported to us at 18:00 Moscow time [GMT+3] on 1 November and we posted a revised definition at 22:00 on the same day.
If any of your Kaspersky anti-virus products flagged this threat during these four hours, we recommend that you scan again with updated bases to make sure.
Authors
From the same authors
In the same category
Kaspersky discovered a new APT CloudSorcerer targeting Russian government entities and using cloud services as C2, just like the CloudWizard actor.
The report features the most significant developments relating to APT groups in Q1 2024, including the new malware campaigns DuneQuixote and Durian, and hacktivist activity.
We continue to report on the APT group ToddyCat. This time, we’ll talk about traffic tunneling, constant access to a target infrastructure and data extraction from hosts.
New unattributed DuneQuixote campaign targeting entities in the Middle East employs droppers disguised as Total Commander installer and CR4T backdoor in C and Go.
The hottest research right in your inbox
Kaspersky false positive on Exploit.HTML.Objdata