Web threats

Last September, in partnership with Microsoft’s Digital Crimes Unit (DCU), SurfNET and Kyrus Tech, Inc., Kaspersky Lab successfully disabled the dangerous Hlux/Kelihos botnet by sinkholing the infected machines to a host under our control.

A few months later, our researchers stumbled upon a new version of the malware with significant changes in the communication protocol and new “features” like flash-drive infection, bitcoin-mining wallet theft.

Now, we are pleased to announce that we have partnered with the CrowdStrike Intelligence Team, the Honeynet Project and Dell SecureWorks to disable this new botnet.

Brazilian bad guys are hosting malicious extensions on official Google’s Chrome Web Store

In early March, we received a report from an independent researcher on mass infections of computers on a corporate network after users had visited a number of well-known Russian online information resources

As Eugene Kaspersky had written earlier, we were expecting new DDoS attacks on resources covering the Russian presidential election

Let’s just make a conservative guesstimate that there are more than 40 million infected victim hosts and malware serving “hosts” connected to the internet at any one time, including both traditional computing devices, network devices and smartphones.

This section of the report is based on data obtained and processed using the Kaspersky Security Network (KSN).

All statistical data used in this report were obtained using Kaspersky Lab’s botnet monitoring system and Kaspersky DDoS Prevention.

This is not the first time the HLUX botnet has been mentioned in this blog, but there are still some unanswered questions that we’ve been receiving from the media

A very important “internet trust” discussion is underway that has been hidden behind closed doors for years and in part, still is.

Malicious ads on security website as the infection vector.

It has been four months since Microsoft and Kaspersky Lab announced the disruption of Kelihos/Hlux botnet.

New Facebook scam redirecting users to clickjacking / likejacking sites. Multiple domains and javascript redirectors is used.

The following statistics were compiled in November using data collected from computers running Kaspersky Lab products

In developed countries, bank cards are very popular. Consumers don’t have to lug around wads of cash when they can opt for a slim piece of plastic that replaces a heavy purse or wallet.

A simple message on a Google forum in August sparked an investigation which would eventually bring down the DigiNotar certificate authority.