Software

Two years since the introduction of the extended databases

Exactly two years ago we introduced our extended databases.

These databases protect against AdWare, RiskWare and PornWare. Some people like to refer to the extended databases simply as anti-spyware protection, but we actually detect much more than just that with the help of these databases, most notably RiskWare programs.

Back then we still had cumulative updates and the extended databases consisted of three components: advware.avc, riskware.avc and pornware.avc.

Later two of those names changed to adware.avc and obscene.avc. Since the beginning of this year we simply have combined them into extxxx.avc database, where the x stands for a decimal figure. However, we’ve actually been detecting these types of threats for much longer than two years.

Before we introduced the extended databases the detection of AdWare etc. was included in x-files.avc.

Two years ago it was special to have a separate option to cover such threats, now it is a much more common feature for antivirus programs.

You can select the extended databases by going to KAV’s settings, clicking on Threats and exclusions, and then selecting the extended database.

Screenshot of KAV Personal with Threats and exclusions window open

Be sure to read the pop-up message when choosing a database from the dropdown list.

Two years since the introduction of the extended databases

Your email address will not be published.

 

Reports

Kimsuky’s GoldDragon cluster and its C2 operations

Kimsuky (also known as Thallium, Black Banshee and Velvet Chollima) is a prolific and active threat actor primarily targeting Korea-related entities. In early 2022, we observed this group was attacking the media and a think-tank in South Korea.

Andariel deploys DTrack and Maui ransomware

Earlier, the CISA published an alert related to a Stairwell report, “Maui Ransomware.” Our data should openly help solidify the attribution of the Maui ransomware incident to the Korean-speaking APT Andariel, also known as Silent Chollima and Stonefly.

Subscribe to our weekly e-mails

The hottest research right in your inbox