Category: SECURELIST

The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor

Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and …

29 December 2025

APT reports, GReAT research, Rootkits, Targeted Attacks
Threat landscape for industrial automation systems in Q3 2025

The report contains statistics on various threats detected and blocked on ICS computers in Q3 2025, including miners, ransomware, spyware, …

25 December 2025

Industrial threats, Phishing, Ransomware, Spyware
Evasive Panda APT poisons DNS requests to deliver MgBot

Kaspersky GReAT experts analyze the Evasive Panda APT’s infection chain, including shellcode encrypted with DPAPI and RC5, as well as the …

24 December 2025

APT reports, GReAT research, Malware Technologies, Targeted Attacks
Assessing SIEM effectiveness

We share the results of assessing the effectiveness of Kaspersky SIEM in real-world infrastructures and explore common challenges and …

23 December 2025

Security technology, SIEM, SoC, TI and IR posts
From cheats to exploits: Webrat spreading via GitHub

We dissect the new Webrat campaign where the Trojan spreads via GitHub repositories, masquerading as critical vulnerability exploits to …

23 December 2025

Malware, Malware Descriptions, Vulnerabilities and exploits
Cloud Atlas activity in the first half of 2025: what changed

Kaspersky expert describes new malicious tools employed by the Cloud Atlas APT, including implants of their signature backdoors VBShower, …

19 December 2025

APT reports, Malware Descriptions, Malware Technologies, Microsoft Windows
Yet another DCOM object for lateral movement

Kaspersky expert describes how DCOM interfaces can be abused to load malicious DLLs into memory using the Windows Registry and Control …

19 December 2025

Microsoft Windows, Research, Security technologies, Security technology
Operation ForumTroll continues: Russian political scientists targeted using plagiarism rep

Kaspersky’s GReAT experts have uncovered a new wave of cyberattacks by the ForumTroll APT group, targeting Russian political scientists and …

17 December 2025

APT reports, GReAT research, Malware Technologies, Targeted Attacks
God Mode On: how we attacked a vehicle’s head unit modem

Kaspersky researchers describe how they gained access to a vehicle’s head unit by exploiting a single vulnerability in its …

16 December 2025

Internet of Things, Research, Vulnerabilities, Vulnerabilities and exploits
Frogblight threatens you with a court case: a new Android banker targets Turkish users

Kaspersky researchers have discovered a new Android banking Trojan targeting Turkish users and posing as an app for accessing court case …

15 December 2025

Malware, Malware Descriptions, Malware Technologies
Following the digital trail: what happens to data stolen in a phishing attack

Kaspersky experts detail the journey of the victims’ data after a phishing attack. We break down the use of email-based phishing kits, …

12 December 2025

Identity Theft, PHP, Research, Spam and phishing
Turn me on, turn me off: Zigbee assessment in industrial environments

Kaspersky expert describes the Zigbee wireless protocol and presents two application-level attack vectors that allow Zigbee endpoints to be …

12 December 2025

Industrial threats, Research, Security technology, Wi-Fi

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/category/securelist/page/2","queryId":2}

●●●