Category: SECURELIST

Dero miner zombies biting through Docker APIs to build a cryptojacking horde

Kaspersky experts break down an updated cryptojacking campaign targeting containerized environments: a Dero crypto miner abuses the Docker …

21 May 2025

Linux, Malware Descriptions, Malware Technologies, SoC, TI and IR posts
Threat landscape for industrial automation systems in Q1 2025

Kaspersky ICS CERT shares trends and statistics on industrial threats in Q1 …

15 May 2025

Industrial Control Systems, Industrial threats, Malware Statistics, Spyware
Using a Mythic agent to optimize penetration testing

Kaspersky experts discuss optimizing penetration testing with an agent for the Mythic framework and object files for Cobalt …

13 May 2025

.NET, Metasploit, Open Source, Research
State of ransomware in 2025

Kaspersky researchers review ransomware trends for 2024, analyze the most active groups and forecast how this threat will evolve in …

7 May 2025

Malware Statistics, Microsoft Windows, Publications, Targeted Attacks
Outlaw cybergang attacking targets worldwide

The Kaspersky Global Emergency Response Team (GERT) detected an Outlaw mining botnet in a customer incident. In this article, we share …

29 April 2025

Botnets, Malware Descriptions, Malware Technologies, SoC, TI and IR posts
Triada strikes back

Kaspersky expert has discovered a new version of the Triada Trojan, with custom modules for Telegram, WhatsApp, TikTok, and other …

25 April 2025

Google Android, Instant Messengers, Malware Descriptions, Malware Technologies
Operation SyncHole: Lazarus APT goes back to the well

Kaspersky GReAT experts uncovered a new campaign by Lazarus APT that exploits vulnerabilities in South Korean software products and uses a …

24 April 2025

APT reports, Malware Technologies, Targeted Attacks, Vulnerabilities and exploits
Russian organizations targeted by backdoor masquerading as secure networking software upda

While investigating an incident, we discovered a sophisticated new backdoor targeting Russian organizations by impersonating secure …

22 April 2025

Incidents, Malware, Targeted Attacks, Trojan
Lumma Stealer – Tracking distribution channels

During incident response activities, our GERT team discovered Lumma Stealer in a customer’s infrastructure. Our experts conducted an …

21 April 2025

Captcha, Cryptocurrencies, Malware Descriptions, SoC, TI and IR posts
Phishing attacks leveraging HTML code inside SVG files

Attackers are increasingly sending phishing emails with SVG attachments that contain embedded HTML pages or JavaScript …

21 April 2025

HTML, Javascript, Phishing, Spam and phishing
IronHusky updates the forgotten MysterySnail RAT to target Russia and Mongolia

MysterySnail RAT attributed to IronHusky APT group hasn’t been reported since 2021. Recently, Kaspersky GReAT detected new versions of …

17 April 2025

APT, APT reports, Backdoor, IronHusky
Streamlining detection engineering in security operation centers

A proper detection engineering program can help improve SOC operations. In this article we’ll discuss potential SOC issues, the necessary …

16 April 2025

Cybersecurity, Detection engineering, SIEM, SoC, TI and IR posts

{"loadingDistance":1200,"stickyPosts":[],"nextPageLink":"https://itts.at/archives/category/securelist/page/2","queryId":2}

●●●