All posts

Microsoft patches 64 vulnerabilities, one being exploited

Patches for 64 vulnerabilities in Microsoft products released

It’s time to update! Microsoft patches 64 vulnerabilities in a variety of products and components — from Windows and Office to Defender and Azure.

Weaponizing game code to attack a company

An unusual case of an attack executed by weaponizing legit video game code.

What are the dangers of browser extensions?

Browser extensions: more dangerous than you think

Using the most common families of malicious extensions as an example, we explain what can go wrong after installing a browser plug-in.

Transatlantic Cable podcast, episode 266

Episode 266 of the Transatlantic Cable includes TikTok data breaches, Samsung and Meta woes, and doom scrolling!

A Zoom vulnerability, and the war between the hackers and the developers

Takeaway from DEF CON 30: vulnerability in Zoom for macOS.

Key findings and tips from the GERT report

Hot off the press: a new study into “the nature of cyber incidents”

Highlights from “The nature of cyber incidents” report by the Kaspersky GERT team.

Three approaches to structuring and alert processing in a SOC

How to distribute SOC tasks to tackle both the cybersecurity skills shortage and burnout.

Transatlantic Cable Podcast Episode 265

From an ex-Twitter exec blowing the whistle to Janet Jackson’s song crashing hard drives – it’s episode 265 of the Transatlantic Cable podcast.

Is the social network Poparazzi a threat to privacy?

“To pop, or not to pop — that is the question”

How things are privacy-wise on the social network Poparazzi.

What a threat-intelligence platform is for

How to reduce the load on SIEM and make good use of threat-intelligence feeds

How a threat-intelligence platform helps SOC analysts.

Transatlantic Cable Podcast Episode 264

From Airbnb new anti-party tech to going back to jail for ordering McDonalds’ – it’s episode 264 of the Transatlantic Cable podcast.

Signal is secure, as proven by hackers

Users of the Signal messaging app got hit by a hacker attack. We analyze what happened and why the attack demonstrates that Signal is reliable.

The chronicle of WannaCry

Security evolution: The large-scale, but short-lived ransomware epidemic of 2017.

Transatlantic Cable Podcast Episode 263

From hacking Starlink to spyware scandals – it’s episode 263 of the Transatlantic Cable podcast.

What’s wrong with blockchains and cryptocurrencies

Crypto, really. Part I: blockchains and cryptocurrencies

Everything you’ve always wanted to know about crypto on the whole, and NFTs in particular, and also why I’m not a fan of such tech, to say the least.

Kaspersky EDR comes first in SE Labs tests.

Independent testing of EDR solutions

SE Labs awarded Kaspersky EDR its highest rating in independent tests based on real world attacks.

Here's an attempt to explain the Retbleed attack (a new variant of Spectre) in simple terms.

Retbleed attack, or Spectre strikes back

Using a recent study on hardware vulnerabilities in processors as an example, we contemplate the cost of security.

Data Safety instead of App Permissions

Google Play’s app descriptions have a new Data Safety section now. We explain why this isn’t such great news.

Transatlantic Cable podcast, episode 262

Episode 262 of the Transatlantic Cable includes UK TikTok woes, Twitter 0days, Meta in trouble and crypto-exchange sanctions!

Maui ransomware and DTrack malware in the service of Andariel

Andariel attacks with DTrack and Maui

The Andariel group attacks companies with several malicious tools.

DogWalk and several vulnerabilities in Exchange

DogWalk and other vulnerabilities

Microsoft has released patches for more than 140 vulnerabilities, some of which need to be closed as soon as possible.

Privacy & Kids