Threat Category: Web threats | Page 14

Once again, it’s time for us to deliver our customary retrospective of the key events that have defined the threat landscape in 2013.

Any online project – be it a long-lost blog, or a new start-up’s web app – has a very important performance feature called a “maximum load”. This indicator makes itself known when a web app either partially or fully fails to perform its assigned functions to process user requests. For some owners, this may mean

Users can become the victim of a drive-by attack and, if the user’s browser or the browser’s plug-ins have the necessary vulnerabilities, malware will be downloaded to and installed on the victim’s computer.

Proxy auto-config (PAC) files are a modern resource that exist on all modern browsers.

While I was investigating the Trojan.JS.Iframe.aeq case one of the files dropped by the Exploit Kit was an Applet exploiting a vulnerability.

According to KSN data, Kaspersky Lab products detected and neutralized a total of 983 051 408 threats in the second quarter of 2013.

Kaspersky Lab’s mission is to protect the world from viruses. But the company also believes it has a duty to safeguard our children from content which could be harmful to youngsters.

Malicious PACs used by Brazilian bad guys aiming to steal bitcoins

“If the Internet felt a bit more sluggish for you over the last few days in Europe, this may be part of the reason why.”

Cybercriminals already started to use the end of MSN Messenger in their attacks, registering malicious domains, buying sponsored links on search engines, tricking users to download and install a malware masquerade as the MSN installer.

After the recent emergence of the criminal PiceBOT in Latin America, AlbaBotnet has joined the growing ranks of regional IT crime.

Google Chrome users are being targeted in these days by a wave of attacks that uses malicious extensions hosted in the official Chrome Web Store

This section of the report forms part of the Kaspersky Security Bulletin 2012 and is based on data obtained and processed using Kaspersky Security Network (KSN).

Cyber predators are stalking, taking advantage of the anonymity offered by the Internet and using the most advanced techniques to deceive their victims. They pose a persistent threat

According to KSN data, Kaspersky Lab products detected and neutralized 1,347,231,728 threats in Q3 2012.

Reports

Kaspersky researchers analyze updated CoolClient backdoor and new tools and scripts used in HoneyMyte (aka Mustang Panda or Bronze President) APT campaigns, including three variants of a browser data stealer.

Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and protect a ToneShell backdoor.

Kaspersky GReAT experts analyze the Evasive Panda APT’s infection chain, including shellcode encrypted with DPAPI and RC5, as well as the MgBot implant.

Kaspersky expert describes new malicious tools employed by the Cloud Atlas APT, including implants of their signature backdoors VBShower, VBCloud, PowerShower, and CloudAtlas.

Web threats

Kaspersky Security Bulletin 2013. Malware Evolution

Under Pressure

HTTPS Working for Malicious Users

PAC – the Problem Auto Config

Anti-decompiling techniques in malicious Java Applets

IT Threat Evolution: Q2 2013

What are children doing online?

Malicious PACs and Bitcoins

The Biggest DDoS Ever that “Almost Broke the Internet”?

The end of MSN Messenger, the beginning of attacks

AlbaBotnet, another new crime wave in Latin American cyberspace

Malicious Chrome extensions: a cat and mouse game

Kaspersky Security Bulletin 2012. The overall statistics for 2012

Cyber predators lurking

IT Threat Evolution: Q3 2012

Reports

HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns

The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor

Evasive Panda APT poisons DNS requests to deliver MgBot

Cloud Atlas activity in the first half of 2025: what changed

Subscribe to our weekly e-mails