Threat Category: Web threats

By 2021 everyone got used to pandemic limitations – industrial organization employees and IT security professionals and threat actors. If we compare the numbers from 2020 and 2021, we see that 2021 looks more stable, particularly in H2.

In Q4 2021, as expected, the number of DDoS attacks rose, while DDoS botnets weaponized a Log4Shell vulnerability. In this report, we present the main DDoS trends and statistics.

This report contains statistics and observations on vulnerabilities, phishing schemes and malware related to telehealth.

Kaspersky Safe Kids statistics on categories of websites, mobile apps and YouTube searches, plus some suggestions on what to buy children for Christmas this year.

Check out the answers to some of users’ biggest security questions about the Log4Shell vulnerabilities (CVE-2021-44228, CVE-2021-45046, CVE-2021-45105).

Key statistics for 2021: miners, ransomware, trojan bankers and other financial malware, zero-day vulnerabilities and exploits, web attacks, threats for macOS and IoT.

We found a suspicious binary and determined it as an IIS module, aimed at stealing credentials and enabling remote command execution from OWA. We named the malicious module ‘Owowa’,

The summary of the critical vulnerability CVE-2021-44228 in the Apache Log4j library, technical details and mitigations.

PC threat statistics for Q3 2021 contain data on miners, encrypting ransomware, financial malware, and threats to Windows, macOS and IoT.

We constantly monitor the landscape of shopping-related threats and release a report tracking the latest criminal activity targeting online shoppers. Here’s what we found this year.

2020–2021 report on malware, unwanted software and phishing schemes using streaming services Netflix, Apple TV, Amazon Prime, Hulu and Disney+ as a lure.

This report provides DDoS attack statistics for Q3 2021, as well as a news roundup and forecasts for the next quarter.

This report shares our insights into the Russian-speaking cybercrime world and the changes in how it operates that have happened in the past five years.

We take a closer look at threats linked to loss of accounts with popular video game digital distribution services, such as Steam and Origin. We also explore the kind of game-related data that ends up on the black market.

This report discusses the statistics gathered by Kaspersky Safe Kids on the websites and apps children use, and on children’s YouTube search queries in summer 2021.

Reports

This is our latest summary of advanced persistent threat (APT) activity, focusing on events that we observed during Q1 2022.

We recently discovered a Trojanized DeFi application that was compiled in November 2021. This application contains a legitimate program called DeFi Wallet that saves and manages a cryptocurrency wallet, but also implants a full-featured backdoor.

At the end of 2021, we inspected UEFI firmware that was tampered with to embed a malicious code we dub MoonBounce. In this report we describe how the MoonBounce implant works and how it is connected to APT41.

It appears that BlueNoroff shifted focus from hitting banks and SWIFT-connected servers to solely cryptocurrency businesses as the main source of the group’s illegal income.

Web threats

Threat landscape for industrial automation systems, H2 2021

DDoS attacks in Q4 2021

Telehealth: a new frontier in medicine—and security

Choosing Christmas gifts for kids: Squid Game and Huggy Wuggy are trending

Answering Log4Shell-related questions

Kaspersky Security Bulletin 2021. Statistics

Owowa: the add-on that turns your OWA into a credential stealer and remote access panel

CVE-2021-44228 vulnerability in Apache Log4j library

IT threat evolution in Q3 2021. PC statistics

Black Friday 2021: How to Have a Scam-Free Shopping Day

Streaming wars continue — what about cyberthreats?

DDoS attacks in Q3 2021

Russian-speaking cybercrime evolution: What changed from 2016 to 2021

BloodyStealer and gaming assets for sale

Summer 2021: Friday Night Funkin’, Måneskin and pop it

Reports

APT trends report Q1 2022

Lazarus Trojanized DeFi app for delivering malware

MoonBounce: the dark side of UEFI firmware

The BlueNoroff cryptocurrency hunt is still on

Subscribe to our weekly e-mails