SASFinSpy: the ultimate spying tool
FinSpy spyware targets Android, iOS, macOS, Windows, and Linux users. Here’s what it can do and how to stay protected.
Security Analyst Summit
46 articles
Tomiris backdoor
At the SAS 2021 conference, our experts talked about the Tomiris backdoor, which appears to be linked to the DarkHalo group.
Mobile apps are watching you
Mobile apps can track your location and sell the data to third parties. What can you do about it?
MontysThree: Industrial cyberspy
Cybercriminals are using steganography to hide their code and seek industrial data.
podcastTransatlantic Cable podcast, episode 165
Jeff and Dave chat about the MosaicRegressor UEFI bootkit, a Grindr copy-paste hack, and more.
Malware delivery through UEFI bootkit with MosaicRegressor
Cybercriminals are employing a sophisticated malicious framework whose tools include some leaked from Hacking Team.
Transatlantic Cable podcast, episode 141
This week, David Jacoby joins Dave and Jeff to discuss his recent talk at SAS at Home, covidication, and more.
androidPhantomLance Android backdoor discovered on Google Play
Kaspersky experts found the PhantomLance Trojan backdoor for Android in Google Play.
Faking fingerprints — doable, but hard
Researchers found a way to create fake fingerprints to fool many devices, although it took a lot of effort.
Transatlantic Cable podcast, episode 129
Cybercriminals employing office cleaners to gain access into companies, the city of Racine hit with ransomware, Kaspersky SAS, the latest headaches for Twitter, and more.
5 travel security tips for the slightly paranoid
5 quick tips for (moderately) paranoid people on how to ensure security and privacy while traveling.
Uncovering fake news bots
How to expose fake news bots based on their behavior and what insights one can get while doing this.
Is it possible to guard against GPS attacks?
Has your sat nav ever insisted you are somewhere you are clearly not? Welcome to GPS spoofing.
Weaponized USB devices as an attack vector
Trojanized HID devices as well as surveilling or malicious cables are serious threats that can be used to compromise even air-gapped systems.
The complexities of public attribution
A look at the complexities of public attribution and why nation-states doing it will have real-world implications.
Microsoft Office and its vulnerabilities
The Microsoft Office threat landscape, and the technologies that help us catch related zero-day exploits, were the focus of this talk at the SAS 2019 conference.
Podcast: #TheSAS2019 recap day 2
Jay Rosenberg of GReAT joins Jeff and Ahmed to recap the second day of the Security Analyst Summit in Singapore.
Another Taj Mahal (between Tokyo and Yokohama)
A new APT attack targets the diplomatic mission of an Asian country.
The Gaza cybergang and its SneakyPastes campaign
A cybergang that specializes in cyberespionage, with its campaign mostly limited to the Middle East and countries in central Asia.
Podcast: #TheSAS2019 recap day 1
In this episode of the Kaspersky Lab podcast, Jeff and Ahmed take a look at the first day of the Security Analyst Summit in Singapore.
How crooks use your doppelgangers to pay with your card
How criminals use data harvested from users’ devices to fool antifraud systems and siphon money from victims’ accounts.