Securelist | Kaspersky’s threat research and reports

While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed “BellaCPP”.

Threats

Latest Posts

Webinars

Register to Access All Kaspersky Webinars

Categories

The non-mobile threat report for Q3 2024 contains data on ransomware, miners, and macOS and IoT threats.

Kaspersky’s Global Research and Analysis Team monitors over 900 APT (Advanced Persistent Threat) groups and operations. In this piece of KSB series, we review the advanced threat trends from the past year and offer insights into what we can expect in 2025.

Reports

While investigating an incident involving the BellaCiao .NET malware, Kaspersky researchers discovered a C++ version they dubbed “BellaCPP”.

Lazarus targets employees of a nuclear-related organization with a bunch of malware, such as MISTPEN, LPEClient, RollMid, CookieTime and a new modular backdoor CookiePlus.

Kaspersky researchers analyze 2019, 2022 and 2024 attacks attributed to Careto APT with medium to high confidence.

The report features the most significant developments relating to APT groups in Q3 2024, including hacktivist activity, new APT tools and campaigns.

Securelist by Kaspersky

BellaCPP: Discovering a new BellaCiao variant written in C++

Attackers exploiting a patched FortiClient EMS vulnerability in the wild

Lazarus group evolves its infection chain with old and new malware

Analysis of Cyber Anarchy Squad attacks targeting Russian and Belarusian organizations

Download a banker to track your parcel

Dark web threats and dark market predictions for 2025

Careto is back: what’s new after 10 years of silence?

Story of the Year: global IT outages and supply chain attacks

Threats

Latest Posts

Exploits and vulnerabilities in Q3 2024

Our secret ingredient for reverse engineering

Kaspersky Security Bulletin 2024. Statistics

Horns&Hooves campaign delivers NetSupport RAT and BurnsRAT

Webinars

Inside the Dark Web: exploring the human side of cybercriminals

The Cybersecurity Buyer’s Dilemma: Hype vs (True) Expertise

Cybersecurity’s human factor – more than an unpatched vulnerability

Building and prioritizing detection engineering backlogs with MITRE ATT&CK

Categories

IT threat evolution in Q3 2024. Non-mobile statistics

IT threat evolution in Q3 2024. Mobile statistics

IT threat evolution Q3 2024

Advanced threat predictions for 2025

Reports

BellaCPP: Discovering a new BellaCiao variant written in C++

Lazarus group evolves its infection chain with old and new malware

Careto is back: what’s new after 10 years of silence?

APT trends report Q3 2024

Subscribe to our weekly e-mails