VIRUS-NEWS
A laughing RAT: CrystalX combines spyware, stealer, and prankware features
by GReAT1 Apr 2026 at 6:00am
Kaspersky researchers analyze a new CrystalX RAT distributed as MaaS and featuring extensive spyware, stealer, and prankware capabilities.
An AI gateway designed to steal your data
by Vladimir Gursky26 Mar 2026 at 11:01am
Dissecting the supply chain attack on LiteLLM, a multifunctional gateway used in many AI agents. Explaining the dangers of the malicious code and how to protect yourself.
Coruna: the framework used in Operation Triangulation
by Boris Larin26 Mar 2026 at 8:00am
Kaspersky GReAT experts look into the Coruna exploit kit targeting iPhones. We discovered that the kernel exploit for CVE-2023-32434 and CVE-2023-38606 is an updated version of the Operation Triangulation exploit.
Anatomy of a Cyber World Global Report 2026
by Kaspersky Security Services25 Mar 2026 at 11:00am
The Kaspersky Security Services report describes cyberattack trends and statistics revealed by the Managed Detection and Response service. The report also includes Incident Response findings based on real-world cases identified and mitigated in 2025.
The SOC Files: Time to ?Sapecar?. Unpacking a new Horabot campaign in Mexico
by Domenico Caldarella, Mateus Salgado18 Mar 2026 at 11:00am
Kaspersky SOC uncovered and analyzed a complex Horabot campaign in Mexico. In this article we share insights into how it is unleashed and how to hunt for this threat.
Free real estate: GoPix, the banking Trojan living off your memory
by GReAT16 Mar 2026 at 11:00am
Kaspersky GReAT experts describe the unprecedentedly complex Brazilian banking Trojan GoPix that employs memory-only implants, Proxy AutoConfig (PAC) files for man-in-the-middle attacks, and malvertising via Google Ads.
BeatBanker: A dual?mode Android Trojan
by GReAT10 Mar 2026 at 10:00am
Kaspersky researchers identified a new Android Trojan dubbed BeatBanker targeting Brazil, posing as government apps and Google Play Store, and capable of both crypto mining and stealing banking data.
Exploits and vulnerabilities in Q4 2025
by Alexander Kolesnikov6 Mar 2026 at 10:00am
This report provides statistical data on published vulnerabilities and exploits we researched during Q4 2025. It also includes summary data on the use of C2 frameworks in APT attacks.
Mobile malware evolution in 2025
by Anton Kivva4 Mar 2026 at 10:00am
Statistics on Android malware and the most notable mobile threats of 2025: preinstalled backdoors Keenadu and Triada, spyware Trojans, the Kimwolf IoT botnet, and Mamont banking Trojans.
Arkanix Stealer: a C++ & Python infostealer
by Kirill Korchemny, Omar Amin19 Feb 2026 at 11:00am
Kaspersky researchers analyze a C++ and Python stealer dubbed "Arkanix Stealer", which was active for several months, targeted wide range of data, was distributed as MaaS and offered referral program to its partners.
