Threat Category: Web threats | Page 13

Once again, it’s time for us to deliver our customary retrospective of the key events that have defined the threat landscape in 2013.

Any online project – be it a long-lost blog, or a new start-up’s web app – has a very important performance feature called a “maximum load”. This indicator makes itself known when a web app either partially or fully fails to perform its assigned functions to process user requests. For some owners, this may mean

Users can become the victim of a drive-by attack and, if the user’s browser or the browser’s plug-ins have the necessary vulnerabilities, malware will be downloaded to and installed on the victim’s computer.

Proxy auto-config (PAC) files are a modern resource that exist on all modern browsers.

While I was investigating the Trojan.JS.Iframe.aeq case one of the files dropped by the Exploit Kit was an Applet exploiting a vulnerability.

According to KSN data, Kaspersky Lab products detected and neutralized a total of 983 051 408 threats in the second quarter of 2013.

Kaspersky Lab’s mission is to protect the world from viruses. But the company also believes it has a duty to safeguard our children from content which could be harmful to youngsters.

Malicious PACs used by Brazilian bad guys aiming to steal bitcoins

“If the Internet felt a bit more sluggish for you over the last few days in Europe, this may be part of the reason why.”

Cybercriminals already started to use the end of MSN Messenger in their attacks, registering malicious domains, buying sponsored links on search engines, tricking users to download and install a malware masquerade as the MSN installer.

After the recent emergence of the criminal PiceBOT in Latin America, AlbaBotnet has joined the growing ranks of regional IT crime.

Google Chrome users are being targeted in these days by a wave of attacks that uses malicious extensions hosted in the official Chrome Web Store

This section of the report forms part of the Kaspersky Security Bulletin 2012 and is based on data obtained and processed using Kaspersky Security Network (KSN).

Cyber predators are stalking, taking advantage of the anonymity offered by the Internet and using the most advanced techniques to deceive their victims. They pose a persistent threat

According to KSN data, Kaspersky Lab products detected and neutralized 1,347,231,728 threats in Q3 2012.

Reports

Kaspersky researchers analyze EAGERBEE backdoor modules, revealing a possible connection to the CoughingDown APT actor.

While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed “BellaCPP”.

Lazarus targets employees of a nuclear-related organization with a bunch of malware, such as MISTPEN, LPEClient, RollMid, CookieTime and a new modular backdoor CookiePlus.

Kaspersky researchers analyze 2019, 2022 and 2024 attacks attributed to Careto APT with medium to high confidence.

Web threats

Kaspersky Security Bulletin 2013. Malware Evolution

Under Pressure

HTTPS Working for Malicious Users

PAC – the Problem Auto Config

Anti-decompiling techniques in malicious Java Applets

IT Threat Evolution: Q2 2013

What are children doing online?

Malicious PACs and Bitcoins

The Biggest DDoS Ever that “Almost Broke the Internet”?

The end of MSN Messenger, the beginning of attacks

AlbaBotnet, another new crime wave in Latin American cyberspace

Malicious Chrome extensions: a cat and mouse game

Kaspersky Security Bulletin 2012. The overall statistics for 2012

Cyber predators lurking

IT Threat Evolution: Q3 2012

Reports

EAGERBEE, with updated and novel components, targets the Middle East

BellaCPP: Discovering a new BellaCiao variant written in C++

Lazarus group evolves its infection chain with old and new malware

Careto is back: what’s new after 10 years of silence?

Subscribe to our weekly e-mails