VIRUS-NEWS
Andariel evolves to target South Korea with ransomware
by Seongsu Park15 Jun 2021 at 12:40pm
In April 2021, we observed a suspicious Word document with a Korean file name and decoy. It revealed a novel infection scheme and an unfamiliar payload. After a deep analysis, we came to a conclusion: the Andariel group was behind these attacks.
PuzzleMaker attacks with Chrome zero-day exploit chain
by Costin Raiu, Boris Larin, Alexey Kulaev8 Jun 2021 at 5:32pm
We detected a wave of highly targeted attacks against multiple companies. Closer analysis revealed that all these attacks exploited a chain of Google Chrome and Microsoft Windows zero-day exploits.
Gootkit: the cautious Trojan
by Anton Kuzmenko7 Jun 2021 at 12:00pm
Gootkit is complex multi-stage banking malware capable of stealing data from the browser, performing man-in-the-browser attacks, keylogging, taking screenshots and lots of other malicious actions. Its loader performs various virtual machine and sandbox checks and uses sophisticated persistence al...
Email spoofing: how attackers impersonate legitimate senders
by Roman Dedenok3 Jun 2021 at 10:00am
This article analyzes different ways of the spoofing email addresses through changing the From header, which provides information about the sender's name and address.
Kids on the Web in 2021: Infinite creativity
by Anna Larkina1 Jun 2021 at 10:00am
In this report we try to understand what occupied children during the last year, from May 2020 to April 2021 inclusive.
IT threat evolution Q1 2021
by David Emm31 May 2021 at 10:00am
SolarWinds attacks, MS Exchange vulnerabilities, fake adblocker distributing miner, malware for Apple Silicon platform and other threats in Q1 2021.
IT threat evolution Q1 2021. Mobile statistics
by Victor Chebyshev31 May 2021 at 10:00am
In the first quarter of 2021 we detected 1.45M mobile installation packages, of which 25K packages were related to mobile banking Trojans and 3.6K packages were mobile ransomware Trojans.
IT threat evolution Q1 2021. Non-mobile statistics
by AMR31 May 2021 at 10:00am
In Q1 2021, we blocked more than 2 billion attacks launched from online resources across the globe, detected 77.4M unique malicious and potentially unwanted objects, and recognized 614M unique URLs as malicious.
Kaspersky Security Bulletin 2020-2021. EU statistics
by Kaspersky26 May 2021 at 10:00am
In the EU, 70% of user computers experienced at least one Malware-class attack, 115,452,157 web attacks and 86,584,675 phishing attempts were blocked.
Evolution of JSWorm ransomware
by Fedor Sinitsyn, Yanis Zinchenko25 May 2021 at 7:00am
There are times when a single ransomware family has evolved from a mass-scale operation to a highly targeted threat ? all in the span of two years. In this post we want to talk about one of those families, named JSWorm.
