Newsletter: Kaspersky named Leader for its Managed Security Services and Incident Response

[THIS IS A PRESS RELEASE]

Kaspersky has been ranked among 2024’s technology leaders in the Quadrant Knowledge Solutions SPARK Matrix™ for its managed security services, digital forensics, and incident response, earning high ratings across the parameters of technology excellence and customer impact.

Newsletter: Data protection, complex tech environments, downtime: main business headache related to IT Security

[THIS IS A PRESS RELEASE]

According to the recent Kaspersky IT Security Economics report, the majority of companies find the loss of productivity, securing complex tech environments, and enabling data protection to be the most concerning business issues, driven by growing IT security needs and requirements. 

The Kaspersky IT Security Economics report is released every year to analyze the changes in budgets, breaches and business challenges affecting IT Security decision makers. This report is compiled from interviews with IT and IT security professionals from organizations of different sizes and industries. The survey was carried out in 27 countries across Europe, the Asia-Pacific region, the Middle East, Turkey and the Africa region, Latin America, and North America.

Newsletter: Ways Filipinos can secure their finances as the digital economy soars to $31 billion

[THIS IS A PRESS RELEASE]

Kaspersky, a global leader in cybersecurity and digital privacy, is actively addressing the growing cyber threats facing Filipinos as the country’s digital economy continues to expand. But as the digital landscape expands, so do the risks.

Newsletter: Kaspersky study: companies seek specialized expertise to combat AI cyber threats

[THIS IS A PRESS RELEASE]

As concerns about the use of AI in cyberattacks increase, companies worldwide are racing to bolster their cybersecurity strategies, according to Kaspersky survey. In a new study the cybersecurity company revealed that 88% of IT and Information Security professionals expect the use of AI by malicious actors to escalate over the next two years. This growing threat is prompting organizations to prioritize cyber defense expertise, with many turning to cybersecurity vendors for specialized support and training.

Newsletter: Kaspersky and AFRIPOL strengthen partnership in combating cybercrime by signing new cooperation agreement

[THIS IS A PRESS RELEASE]

To further enhance global efforts to combat cyber offenses, Kaspersky and AFRIPOL have signed a cooperation agreement in preventing and fighting cybercrime. Covering a period of five years, the document formalizes and facilitates cooperation between the company and the law enforcement agency in sharing threat intelligence data on the latest cybercriminal activities.

Newsletter: Ransomware continues to pummel organisations in Southeast Asia

[THIS IS A PRESS RELEASE]

Kaspersky cybersecurity solutions for businesses in Southeast Asia (SEA) detected 57,571 ransomware attacks from January to June 2024.

Newsletter: Automation in cybersecurity: salvation for companies or loophole for cybercriminals

[THIS IS A PRESS RELEASE]

Cybersecurity providers are primarily research centers facing with threats and developing technologies for their detection and prevention. They constantly strive to offer the most effective and reliable threat management mechanisms. As the development of any cybersecurity solution is a resource investment and the nature of threats constantly changes, we see that attacks become more complex under the influence of technological advancements in threat management. This is leading us to a new wave of technological advancements in protective solutions.

Newsletter: New cyber campaign targets PC users with fake CAPTCHAs and browser errors

[THIS IS A PRESS RELEASE]

A new wave of the malicious campaign that is spread through web ads and aimed at Windows PC users was discovered by Kaspersky. While browsing the web, users may unknowingly click on an ad that invisibly covers the entire screen, redirecting them to a fake CAPTCHA page or a fake Chrome error message that prompts them to follow steps to download stealers. Kaspersky’s telemetry recorded over 140,000 encounters with these malicious ads in September and October 2024, and more than 20,000 users were redirected to the fake pages hosting malicious scripts. Most often these were users from Brazil, Spain, Italy, and Russia. To stay safe, experts advise users to exercise caution and avoid following suspicious prompts for action online.

A CAPTCHA is a security feature used on websites and in apps to verify whether a user is human or an automated program or bot. Earlier this year, there were reports of attackers distributing the Lumma stealer using fake CAPTCHAs, primarily targeting gamers. When browsing gaming websites, users were lured into clicking on an ad that covered the entire screen. They were redirected to a fake CAPTCHA page with instructions below the prompt tricking them into downloading the stealer. When users clicked the I'm not a robot button, an encoded Windows PowerShell command was copied to their PC’s clipboard. They were then prompted to paste it into the terminal box and press Enter, inadvertently downloading and launching Lumma. The malware searched for cryptocurrency-related files, cookies, and password manager data on the victim's device. It also visited the webpages of various e-commerce platforms, boosting their view counts, giving the attackers additional financial gain.

Newsletter: Kaspersky expands Kids Cyber Resilience Project in APAC, Middle East and CIS

[THIS IS A PRESS RELEASE]

Kaspersky is announcing the expansion of its Kaspersky Kids Cyber Resilience Project to Vietnam, in the Asia-Pacific (APAC) region, and is launching it in the Middle East and CIS countries. This initiative is designed to equip children and teenagers with essential cybersecurity skills, fostering a safer digital experience for the younger generation in an increasingly interconnected world.

The Kaspersky Kids Cyber Resilience Project focuses on raising awareness among children, parents, educators, and NGOs about online threats. It also stresses the importance of digital hygiene, practical ways to enhance online security, and enjoy technology. Through interactive workshops, online courses, and other activities, the program encourages responsible digital behavior, helping kids develop the resilience needed to navigate the internet safely. Launched in Singapore in March 2023, the initiative has successfully run in a number of other countries in APAC — the Philippines, Malaysia, and India — to date.

Newsletter: Kaspersky uncovers new Grandoreiro light variant

[THIS IS A PRESS RELEASE]

Despite the arrest of important operators in early 2024, Grandoreiro continues to be used by its partners in new campaigns. Kaspersky Global Research and Analysis team (GReAT) has discovered a new light version focused on Mexico targeting around 30 banks. These findings are to be highlighted at the Security Analyst Summit (SAS) 2024. Remaining one of the most active threats globally, Grandoreiro accounts for around five percent of banking trojan attacks this year.  Mexico is one of the most targeted countries by Grandoreiro variants, including the new light version, seeing 51,000 recorded incidents this year.

After assisting an INTERPOL-coordinated action, which has led to Brazilian authorities arresting operators behind a Grandoreiro banking trojan operation, Kaspersky discovered that the group’s codebase has been split into lighter, fragmented versions of the trojan, to continue its attacks. Recent analysis has identified a specific light version focused primarily on Mexico, which has been used to target approximately 30 financial institutions. The creators likely have access to the source code and are launching new campaigns using the simplified legacy malware. 

Newsletter: Kaspersky Threat Intelligence Portal now provides a new tailored real-time overview of the threat landscape

[THIS IS A PRESS RELEASE]

To provide businesses with an all-encompassing view of the threats targeting their organizations, Kaspersky added new Threat Landscape section to its Threat Intelligence Portal. Now customers can access the most comprehensive and up-to-date information regarding potential malicious actors, their techniques, tactics, procedures and malware to identify likely attack vectors and build a robust cybersecurity strategy.

Newsletter: Almost 10 million of stolen account records from the Middle East found on the dark web

[THIS IS A PRESS RELEASE]

Kaspersky’s Digital Footprint Intelligence (DFI) team has released a report during GITEX Global 2024, shedding light on the most pervasive cyberthreats facing organizations in the Middle East. Kaspersky experts delved deep into the dark web – exploring everything from cybercriminal forums to shadow marketplaces – to collect data from the first half of 2024, piecing together a comprehensive picture of the digital dangers lurking beneath the surface.

Newsletter: Cybercriminals using “Joker: Folie à Deux” release to scam fans, finds

[THIS IS A PRESS RELEASE]

Kaspersky has uncovered cybercriminals exploiting the hype surrounding “Joker: Folie à Deux” ahead of its worldwide cinema premiere for online phishing scams. Fans eager to watch the new movie online are at risk of being duped into giving away their sensitive data and money.

Newsletter: Kaspersky uncovers scam M4 MacBook Pro offers following influencer review of unreleased model

[THIS IS A PRESS RELEASE]

As Russian content creator recently posted a video review of an unreleased MacBook Pro model featuring the new M4 chip, it quickly created a buzz across the media and tech communities. Meanwhile, Kaspersky experts have noticed a surge in scamming activity, with fraudsters exploiting the hype by offering fake pre-sales and product testing programs of the unreleased laptop, aiming to steal victims' money and personal data.

Newsletter: Kaspersky: half of dark web exploit listings target zero-day vulnerabilities

[THIS IS A PRESS RELEASE]

Between January 2023 and September 2024, Kaspersky Digital Footprint Intelligence experts identified 547 listings to buy and sell exploits targeting software vulnerabilities. These advertisements are posted on various dark web forums and shadow Telegram channels, with half involving zero-day and one-day vulnerabilities. However, it is difficult to confirm whether these exploits are functional, as the dark market is rife with scams. Additionally, Kaspersky found that, on average, the cost of exploits for remote code execution vulnerabilities amounted to $100,000.

Newsletter: Kaspersky detects over 1 million daily tracking attempts

[THIS IS A PRESS RELEASE]

Kaspersky's latest analysis of the 25 most prevalent web tracking services, including Google services, New Relic, Microsoft, revealed over 38 billion instances of web trackers collecting user behavior data in 2024, with an average of one million detections per each day. 

Newsletter: Kaspersky reports Necro Trojan sneaks into Google Play with up to 11 million victims

[THIS IS A PRESS RELEASE]

In late August 2024, Kaspersky experts identified a new version of the Necro Trojan that had infiltrated several popular applications on Google Play and modified applications on unofficial platforms, including Spotify, WhatsApp and Minecraft. Necro is an Android downloader that downloads and runs other malicious components on infected devices based on commands issued by the Trojan's creators. Kaspersky’s solutions recorded* Necro attacks targeting users in Russia, Brazil, Vietnam, Ecuador, and Mexico as part of this malicious campaign.

Newsletter: The costs of cyberattacks: how one breach can sink your business

[THIS IS A PRESS RELEASE]

In today’s interconnected world, cyberattacks are more frequent and more dangerous than ever before. Businesses, regardless of size or industry, are prime targets for cybercriminals. These attacks can cause widespread damage and create long-lasting consequences. In this article, Kaspersky dives into the impact of cyberattacks on business and reveals the key losses that an unprotected business can suffer.

Newsletter: Dangerous Loki backdoor discovered: Kaspersky experts identify agent in Russian company cyberattacks

[THIS IS A PRESS RELEASE]

A previously unknown version of the Loki backdoor that has been used in a series of targeted attacks against at least 12 Russian companies has been identified by Kaspersky experts. The incursions occurred across various industries, including engineering and healthcare. The malware, which Kaspersky detects as Backdoor.Win64.MLoki, is a private agent version of the open-source post-exploitation framework Mythic.

Newsletter: Less routine, more automation: Kaspersky adds new capabilities to its SIEM system

[THIS IS A PRESS RELEASE]

As challenges continue to grow for cybersecurity teams, Kaspersky has unveiled a significant update to its Unified Monitoring and Analysis Platform, a security information and event management system (SIEM). The enhanced functionality is designed to bolster the productivity of cybersecurity teams by expanding the capabilities for threat detection and response.