Events

Wake me up till SAS summit ends

Kaspersky Security Analyst Summit, SAS at Home 2021

What do cyberthreats, Kubernetes and donuts have in common – except that all three end in “ts”, that is? All these topics will be mentioned during the new SAS@Home online conference, scheduled for September 28th-29th, 2021. To be more specific, there will be a workshop titled, “Prevent & Detect Security Threats in the Kubernetes Era” and a presentation titled, “Time to Make the Donuts”, the latter presumably not about actual doughnuts. As for cyberthreats, this topic is always on the table because it is the phenomenon we confront every day and the cause that unites us researchers.

What else can we offer during the two eventful days?

  • Kaspersky experts Igor Kuznetsov and Georgy Kucherin will tell a story of how they investigated top-class commercial spyware and dissected an infamous toolset.
  • Rintaro Koike, Shogo Hayashi and Ryuichi Tanabe of NTT Security, Japan will present a research paper, titled, “Operation Software Concepts: A Beautiful Envelope for Wrapping Weapon”.
  • Ivan Kwiatkowski and Pierre Delcher of Kaspersky GReAT will describe possible links between the Tomiris malware and the supply-chain attacks on Solarwind.
  • PWC’s John Southworth will teach the audience to dance with APT41.
  • More details about the GhostEmperor APT, tools to catch zero-click zero-days, supply-chain attacks in Farsi and, of course, our usual workshops.

Last but not least, we are preparing worthy challenges for everyone interested in malware analysis and threat hunting. During SAS@Home, the 9th Edition of our, by now well-established, CTF/Hackgame, players will compete in five categories, trying to solve challenges presented by CTF hosts David Jacoby and Marco Preuss. This year, we will have the following categories: kNOW yOUR eNEMY, dEBUGGERS pARADISE, oLDsKOOL, cODEbREAKER and THE WiLD WEB, each with five amazing levels. You do not need to be a reversing wizard, guru programmer or ninja analyst – there is something for everyone to tackle and solve.

At the end, the top five players will win a seat at Kaspersky xTraining, worth $1,400! However, our game is not just about prizes, but having fun and learning something new. Always remember: you cannot loose anything, but you can win it all.

Wake me up till SAS summit ends

Your email address will not be published.

 

Reports

APT trends report Q1 2022

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q1 2022.

Lazarus Trojanized DeFi app for delivering malware

We recently discovered a Trojanized DeFi application that was compiled in November 2021. This application contains a legitimate program called DeFi Wallet that saves and manages a cryptocurrency wallet, but also implants a full-featured backdoor.

MoonBounce: the dark side of UEFI firmware

At the end of 2021, we inspected UEFI firmware that was tampered with to embed a malicious code we dub MoonBounce. In this report we describe how the MoonBounce implant works and how it is connected to APT41.

Subscribe to our weekly e-mails

The hottest research right in your inbox