Selecting the right MSSP: Guidelines for making an objective decisionby Roman Nazarov
30 Mar 2023 at 10:00am
This paper aims to provide guidance for organizations looking to select an MSSP and help to identify the benefits and drawbacks of using an MSSP.
Financial cyberthreats in 2022by Kaspersky
29 Mar 2023 at 10:00am
This report shines a spotlight on the financial cyberthreat landscape in 2022. We look at phishing threats commonly encountered by users and companies, as well as the dynamics of various Windows and Android-based financial malware.
Copy-paste heist or clipboard-injector attacks on cryptousersby Vitaly Kamluk
28 Mar 2023 at 10:00am
Clipboard injector malware targeting cryptocurrencies such as Bitcoin, Ethereum, Litecoin, Dogecoin and Monero, is distributed under the guise of Tor Browser.
How scammers employ IPFS for email phishingby Roman Dedenok
27 Mar 2023 at 8:00am
Attackers put phishing HTML files in IPFS thus cutting back on web hosting costs. IPFS is used in both mass phishing and targeted (spearphishing) campaigns.
Understanding metrics to measure SOC effectivenessby Sarim Rafiq Uddin
24 Mar 2023 at 8:00am
How do we ensure the services being provided by SOCs are meeting expectations? How do we know continuous improvement is being incorporated in daily operations? The answer lies in the measurement of SOC internal processes and services.
Developing an incident response playbookby Igor Talankin
23 Mar 2023 at 8:00am
Incident response playbooks help optimize the SOC processes, and are a major step forward to SOC maturity, but can be challenging for a company to develop. In this article, I want to share some insights on how to create the (almost) perfect playbook.
Bad magic: new APT found in the area of Russo-Ukrainian conflictby Leonid Bezvershenko, Georgy Kucherin, Igor Kuznetsov
21 Mar 2023 at 8:00am
In October 2022, we identified an active infection of government, agriculture and transportation organizations located in the Donetsk, Lugansk, and Crimea regions.
Business on the dark web: deals and regulatory mechanismsby Vera Kholopova, Kaspersky Security Services
15 Mar 2023 at 10:00am
How deals and arrangements are made on the dark web, what parties are involved, what escrow services and arbitration are and how these affect the security of deals.
Malvertising through search enginesby Victoria Vlasova, Haim Zigel, Ilya Tyunkin
9 Mar 2023 at 10:00am
Kaspersky observes a growth in malvertising activity that exploits Google search ads to promote fake software websites that deliver stealers, such as RedLine and Rhadamantys.
The state of stalkerware in 2022by Kaspersky
8 Mar 2023 at 10:00am
In 2022, Kaspersky data shows that 29,312 unique individuals around the world were affected by stalkerware. We detected 182 different stalkerware apps, the most popular one was Reptilicus.