For more than six years, the Global Research and Analysis Team (GReAT) at Kaspersky has been publishing quarterly summaries of advanced persistent threat (APT) activity. These summaries are based on our threat intelligence research. They provide a representative snapshot of what we have published and discussed in greater detail in our private APT reports. They are designed to highlight the significant events and findings that we feel people should be aware of.
More than 800,000 people in Europe and the US appear to have been duped into sharing card details and other sensitive personal data with a vast network of fake online designer shops apparently operated from China.
L'identité du leader du gang de hackers Lockbit, le cybercriminel le plus recherché de la planète, a été dévoilée ce 7 mai par les forces de l'ordre. Un expert en cyber est parti en quête d'informations sur ce ressortissant russe. Une demi-heure seulement après le communiqué des forces de l'ordre dévoilant l'identité
The UK Government confirmed today that a threat actor recently breached the country's Ministry of Defence and gained access to part of the Armed Forces payment network.
Five takeaways from the indictment of Dmitry Yuryevich Khoroshev, the hacker who U.S. and U.K. authorities accuse of being the mastermind of the LockBit ransomware gang.
Le media «Zeit online» révèle comment, jusqu’à récemment, il était possible d’accéder à l’intitulé, la date, l’heure ou le nom de la personne invitant à des réunions importantes de la Bundeswehr sur Webex. Au moins 6000 réunions ont été concernées
Proton Mail came under scrutiny for its role in a legal request by the Spanish authorities leading to the identification and arrest of a user.
Hackers linked to Beijing’s security services targeted European politicians to gather sensitive data.
We discovered a fundamental design problem in VPNs and we're calling it TunnelVision. This problem lets someone see what you're doing online, even if you think you're safely using a VPN.
La presse alémanique a révélé samedi que neuf parlementaires suisses auraient été visés par une attaque informatique chinoise en hiver 2021. Après avoir mené l'enquête, le ministère américain de la Justice accuse sept membres d'un groupe de hackeurs proches du gouvernement chinois.
La cyberattaque menée en 2021 par un groupe de hackeurs semble concerner une centaine de politiciens et politiciennes dans le monde. Plus précisément, les personnalités politiques qui ont été visées portent un regard critique à l'égard du gouvernement chinois.
“Yahoo Boy” cybercriminals are openly running dozens of scams across Facebook, WhatsApp, Telegram, TikTok, YouTube, and more.
The EU issued a statement strongly condemning the malicious cyber campaign conducted by the Russia-controlled Advanced Persistent Threat Actor 28 (APT28) against Germany and Czechia.
Czechia jointly with Germany, the European Union, NATO and international partners strongly condemns activities of the Russian state-controlled actor APT28, who has been conducting a long-term cyber espionage campaign in European countries. APT28 is associated with Russian military intelligence service GRU.
Our researchers found fake sponsored search results that lead consumers to a typical fake Microsoft alert site set up by tech support scammers.
"Code execution in 0 seconds (3 seconds to be more accurate), no limitation, no authentication..."
Microsoft discovered a vulnerability pattern in multiple popular Android applications that could enable a malicious application to overwrite files in the vulnerable application’s internal data storage directory, which could lead to arbitrary code execution and token theft, among other impacts. We have shared our findings with Google’s Android Application Security Research team, as well as the developers of apps found vulnerable to this issue. We anticipate that the vulnerability pattern could be found in other applications. We’re sharing this research more broadly so developers and publishers can check their apps for similar issues, fix as appropriate, and prevent them from being introduced into new apps or releases.
For World Password Day, we’re sharing updates to passkeys across our products and sharing more ways we’re keeping people safe online.
Marriot revealed in a court case around a massive 2018 data breach that it had been using secure hash algorithm 1 and not the much more secure AES-1 encryption as it had earlier maintained.
A web of surveillance research reveals evidence of extensive sales and use of spyware and other surveillance products in Indonesia.
