Secure List

Managed Detection and Response in Q4 2020

6 days 4 hours ago
During the reported period, our MDR processed approximately 65 000 alerts, followed by an investigation that resulted in 1 506 incidents reported to customers, approximately 93% of which were mapped to the MITRE ATT&CK framework.
Kaspersky Security Services

Arrests of members of Tetrade seed groups Grandoreiro and Melcoz

1 week 5 days ago
Spain’s Ministry of the Interior has announced the arrest of 16 individuals connected to the Grandoreiro and Melcoz cybercrime groups. Both are originally from Brazil and form part of the Tetrade umbrella, operating for a few years now in Latin America and Western Europe.

LuminousMoth APT: Sweeping attacks for the chosen few

1 week 6 days ago
We recently came across unusual APT activity that was detected in high volumes, albeit most likely aimed at a few targets of interest. Further analysis revealed that the actor, which we dubbed LuminousMoth, shows an affinity to the HoneyMyte group, otherwise known as Mustang Panda.
Mark Lechtik, Paul Rascagneres, Aseel Kayal

WildPressure targets the macOS platform

2 weeks 6 days ago
We found new malware samples used in WildPressure campaigns: newer version of the C++ Milum Trojan, a corresponding VBScript variant with the same version number, and a Python script working on both Windows and macOS.
Denis Legezo

Detecting unknown threats: a honeypot how-to

4 weeks 1 day ago
Dan Demeter, Senior Security Researcher with Kaspersky's Global Research and Analysis Team and head of Kaspersky's Honeypot project, explains what honeypots are, why they're recommended for catching external threats, and how you can set up your own simple SSH-honeypot.

How to confuse antimalware neural networks. Adversarial attacks and protection

1 month ago
Сybersecurity companies implement a variety of methods to discover previously unknown malware files. Machine learning (ML) is a powerful and widely used approach for this task. But can we rely entirely on machine learning approaches in the battle with the bad guys? Or could powerful AI itself be vulnerable?
Alexey Antonov, Alexey Kogtenkov

Behind the scenes with the head of Kaspersky’s GReAT

1 month ago
Costin Raiu has been with Kaspersky since 2000. In 2010, he became Director of our Global Research and Analysis Team (GReAT). In our interview with Costin, he spoke about the job of a security researcher, its challenges and advantages, and offered some advice for newcomers to cybersecurity.

Black Kingdom ransomware

1 month 1 week ago
Black Kingdom ransomware appeared on the scene back in 2019, but we observed some activity again in 2021. The ransomware was used by an unknown adversary for exploiting a Microsoft Exchange vulnerability (CVE-2021-27065).
Marc Rivero
59 minutes 15 seconds ago
Secure List Subscribe to Secure List feed

Theme by Danetsoft and Danang Probo Sayekti inspired by Maksimer