Business

670 articles

A matter of triangulation

Targeted attack on our management with the Triangulation Trojan.

Safeguards against firmware signed with stolen MSI keys

MSI leak: tips for users, organizations, and developers

Now anyone can sign device firmware with MSI private keys. This represents a long-term persistent risk to be considered by all users.

Creating a realistic isolated environment for threat intelligence and analysis

Making a better sandbox

The effectiveness of a sandbox largely depends on its ability to realistically imitate a working environment.

Public and private clouds compared for risks and costs

Brief cheat-sheet on cloud types and their risks

Сloud technologies differ in terms of both costs and risks. What cloud type should you choose, and how should you begin your migration?

Security risks associated with the new .zip and .mov domains

Beware the .zip and .mov domains!

Website names in the ZIP and MOV domains are indistinguishable from file names. How will this affect IT systems, and what will threat actors do?

New hardware vulnerability in Intel processors

A brief, plain-language explanation of an advanced method of data theft using features of modern CPUs.

ChatGPT jailbreaks

How Lord Voldemort helps hack neural networks.

How to get ready for deepfake threats

Cybercriminals are increasingly using deepfakes in attacks against companies. What can we do to be safer?

The most popular ways to launder cryptocurrency

How cybercriminals launder dirty crypto

Crypto mixers, nested exchanges, cash-out and other crypto-laundering methods used by ransomware operators.

How real is deepfake threat?

Understanding the mechanics of the darknet deepfake industry.

What threatens smart devices, and how microkernel OSs can help protect them.

Microkernel OSs against threats to smart devices

Why such OSs are gaining more significance in markets in need of security.

Microsoft buried Internet Explorer. But not completely — again

Internet Explorer is finally dead. Or is it?

In its February update, Microsoft buried Internet Explorer once and for all. Or did it? We investigate what really happened.

A look at cybersecurity issues in season 3 of The Mandalorian show.

Cybersecurity in season 3 of The Mandalorian

As per tradition, on May 4, we review the status of cybersecurity in a galaxy far, far away.

Purging your company’s LinkedIn page of fake employees

Fake accounts on LinkedIn: time for a purge

Why you should purge your company’s LinkedIn page from fake employee profiles, and how to do it.

How to deploy an information security solution in a midsize business

Implementing information security solutions in SMBs

The pros and cons of different approaches to deploying and maintaining information security systems.

What conversation hijacking is and how you can protect your employees from it.

Conversation hijacking and how to deal with it

Cybercriminals can access the e-mails of folks you’re in correspondence with and then try to hijack your conversations.

What methods are used to attack servers, and how to guard against ransomware

Attacks on virtualization systems and Linux servers

Linux and ESXi-based systems are increasingly falling victim to ransomware attacks. So how can you protect your servers?

QBot trojan being distributed through business e-mails

Hackers are distributing the QBot trojan through business correspondence.

Open source: the top-10 risks for business

Open-source applications require proper implementation and maintenance; otherwise a company could face many threats. We highlight the key risks.

CVE-2023-28252 zero-day vulnerability in CLFS

Kaspersky experts discover a CLFS vulnerability being exploited by cybercriminals.

Data exfiltration — through a built-in PC speaker

A method of stealing data from an air-gapped system through a speaker you may not even know is there.

Privacy & Kids