vulnerabilitiesCVE-2024-10924: vulnerability on around four million sites
A vulnerability that permits bypassing authentication has been found in a popular security hardening plugin for WordPress.
Latest
Kaspersky Password ManagerKaspersky Password Manager gets a new look
We’ve updated the design of our password manager’s mobile version. Storing and managing passwords is now even more convenient.
tipsTwo-minute guide to cybersafety
Five dead simple tips to greatly improve your defenses against cybercriminals.
CVE-2024-43451 and other reasons to update ASAP
Exploitation of vulnerability CVE-2024-43451 allows an attacker to steal an NTLMv2 hash with minimal interaction from the victim.
How to learn from a cybersecurity incident
Analyzing incidents and drawing lessons from them should be an integral part of the incident response process. This can help improve the overall security level of a company.
How to save web pages for posterity
Web pages often disappear, move, or change content. How to keep them the way you want, or easily locate a web archive?
scamHow (not) to play tanks and catch a backdoor
Cybercriminals have devised a new ruse: luring gamers to a modish crypto tank-game to gain full access to their computers.
torTor Browser and anonymity: what you need to know
The Tor Browser is a bastion of online anonymity, yet even this tool can’t ensure complete privacy — and here’s why.
Password standards: 2024 requirements
Discontinuing mandatory password rotations, banning outdated MFA methods, and other updates in the NIST SP 800-63 standards for digital account authentication and management.
Gamers
How scammers attack young gamers
Autumn is here, kids are going back to school and also meeting up with friends in their favorite online games. With that in mind, we have just carried out one of our biggest ever studies of the threats young gamers are most likely to encounter.
Live hack: Apex Legends esports tournament scandal
Hackers have long been engaging with the gaming world: from cracking games and creating cheats, to, more recently, attacking esports players live during an Apex Legends tournament. Regarding the latter, we break down what happened and how it could have been avoided.
Mario Forever, malware too: a free game with a miner and Trojans inside
Malicious versions of the free-to-download game Super Mario 3: Mario Forever plant a miner and a stealer on gamers’ machines.
Minecraft players under attack
Minecraft mods downloaded from several popular gaming websites contain dangerous malware. What we know so far.
The Phantom Menace: how gamers of different ages are being attacked
Why scammers are more likely to target kids than hardcore gamers, how they do it, and what they want to steal
The true cost of gaming
Our research reveals gamers’ attitudes toward computer performance — and the ethics of winning and losing.
Business
SIEMKaspersky SIEM: early threat detection and other improvements
Rules for detecting atypical behavior in container infrastructure at the data collection stage, and other updates to our SIEM system.
Malware in developer coding tests
Hackers continue to target developers: during a fake job interview, they ask “potential employees” to run a script from GitHub that hides a backdoor.
Will AI replace SOC analysts?
We share our experience on the optimal use of AI models in the SOC of our Kaspersky MDR service.
AI in cybersecurity automation
AI has dozens of applications in cybersecurity. Which ones are the most effective?
Phishing emails and Docusign electronic signature
Phishers have adopted another trick: they send emails pretending to be from Docusign with a fake link to a document that the recipient must sign.
I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place.
Eugene Kaspersky
Popular
Fact or fiction: Hyphens break iPhones
Does saying “hyphen” five times to your iPhone really crash it — or is that just another myth?
7 steps to minimize game lags in Windows 10
These seven tips will help you get maximum gaming performance from your PC while retaining a high level of protection.
10 Cool Big Data Projects
There are many cool and funny projects in the world that deal with big data and we’ve gathered the Top 10 list of the most interesting ones. See for yourself!
Change Your Password Day Strong Password Day
Changing passwords regularly is outdated. Use strong and unique passwords that are easy to remember instead. Here’s how to make them.
Who to trust: Different types of SSL certificates
We explain what digital certificates are, what types exist, and what problems are associated with them.
Rooting your Android: Advantages, disadvantages, and snags
Many users of devices running Android are tempted to root them. Here we explain the good and bad sides of having superuser rights.
VPNs: What you need to know
There’s been a lot of talk lately about privacy protection and VPNs. But what exactly is a VPN? We explain in simple words.
Tips
How to set up security and privacy in ASICS Runkeeper
A detailed guide to configuring privacy settings in the ASICS Runkeeper running app.
Subscribe or treat? Manage your subscriptions with ease
Many of us have dozens of online subscriptions and recurring payments. How to take control, save money, and stay on top of expenses?
How to set up security and privacy in adidas Running (Runtastic)
A detailed guide on setting up privacy in the adidas Running app.
Taking a selfie with your ID card — is it safe?
Many popular online services these days require a selfie with your ID card or passport to register. We explore whether taking such photos is safe (spoiler: it’s not) and how to minimize the risks.