VIRUS-NEWS
Booking a Taxi for Faketoken
by Victor Chebyshev17 Aug 2017 at 9:00am
The Trojan-Banker.AndroidOS.Faketoken malware has been known about for already more than a year. Throughout the time of its existence, it has worked its way up from a primitive Trojan intercepting mTAN codes to an encrypter. Not so long ago, thanks to our colleagues from a large Russian bank, we ...
ShadowPad in corporate networks
by GReAT15 Aug 2017 at 6:00pm
In July 2017, during an investigation, suspicious DNS requests were identified in a partner?s network. The source of the queries was a software package produced by NetSarang. Our analysis showed that recent versions of the software had been surreptitiously modified to include an encrypted payload...
IT threat evolution Q2 2017
by David Emm15 Aug 2017 at 9:00am
The threat from ransomware continues to grow. Between April 2016 and March 2017, we blocked ransomware on the computers of 2,581,026 Kaspersky Lab customers. In May, we saw the biggest ransomware epidemic in history, called WannaCry.
IT threat evolution Q2 2017. Statistics
by Roman Unuchek15 Aug 2017 at 9:00am
According to KSN data, Kaspersky Lab solutions detected and repelled 342, 566, 061 malicious attacks from online resources located in 191 countries all over the world.
The return of Mamba ransomware
by Anton Ivanov9 Aug 2017 at 2:00pm
At the end of 2016, there was a major attack against San Francisco's Municipal Transportation Agency. The attack was done using Mamba ransomware. This month, we noted that the group behind this ransomware has resumed their attacks against corporations.
APT Trends report Q2 2017
by GReAT8 Aug 2017 at 2:00pm
Since 2014, Kaspersky Lab?s Global Research and Analysis Team (GReAT) has been providing threat intelligence reports to a wide-range of customers worldwide, leading to the delivery of a full and dedicated private reporting service. Prior to the new service offering, GReAT published research onlin...
Steganography in contemporary cyberattacks
by Alexey Shulmin3 Aug 2017 at 9:00am
Today, a dangerous new trend is emerging: steganography is increasingly being used by actors creating malware and cyber-espionage tools. Most modern anti-malware solutions provide little, if any, protection from steganography, while any carrier in which a payload can be secretly carried poses a p...
DDoS attacks in Q2 2017
by Alexander Khalimonenko1 Aug 2017 at 9:00am
The second quarter quite clearly showed that the DDoS-attack threat is perceived rather seriously. Some companies were prepared to pay cybercriminals literally after their first demand without waiting for the attack itself. This set off a whole new wave of fraud involving money extortion under th...
A new era in mobile banking Trojans
by Roman Unuchek31 Jul 2017 at 9:00am
In mid-July 2017, we found a new modification of the well-known mobile banking malware family Svpeng ? Trojan-Banker.AndroidOS.Svpeng.ae. In this modification, the cybercriminals have added new functionality: it now also works as a keylogger, stealing entered text through the use of accessibility...
CowerSnail, from the creators of SambaCry
by Sergey Yunakovsky25 Jul 2017 at 1:32pm
We recently reported about SambaCry, a new family of Linux Trojans exploiting a vulnerability in the Samba protocol. A week later, Kaspersky Lab analysts managed to detect a malicious program for Windows that was apparently created by the same group responsible for SambaCry.
