SMB

ProjectSauron is obviously a costly attack, but the budget is not invested in ‘rocket science’, but rather in the ‘bugfixing’ after the previous APT campaigns.

According to Kaspersky Security Network, the number of corporate users attacked by cryзtors has increased almost sixfold — from 27,000 in 2014–2015 to 158,600 in 2015–2016.

We use the right approach for every group, showing every employee how they contribute — and how to contribute — to the security of the organization.

In the very near future, we will use the HackerOne platform to launch the Kaspersky Lab Bug Bounty program, which will give outside experts an opportunity to seek bugs in Kaspersky Lab’s products and be rewarded for vulnerabilities they might find.

Headed to Black Hat and Defcon? Make sure to come say hi.

In this roundup, we talk about five true leaks and some lessons to be learned from them.

The key danger is the method the Hummer uses to achieve its goals. It roots a device and gains administrator’s privileges to install unauthorized software of its own discretion

Kaspersky Lab, the Dutch National Police, Europol, and Intel Security are joining forces to launch a new initiative to battle ransomware worldwide. The initiative is called “No More Ransom.”

On July 27, members of Kaspersky Lab’s GReAT will sit down on Reddit, where you can ask them absolutely anything.

Kaspersky Lab has patented technology enabling our software to detect man-in-the-middle (MitM) attacks, beloved of authors of financial malware.

Smart MSPs craft security software proposals for SMBs and offer security systems management services that eliminate the need for in-house information security specialists. Not every service provider is good for small companies, but the most successful MSPs are focused on this segment.

An Indian-speaking threat actor, Dropping Elephant chooses targets mainly in the Asian region, paying particular attention to Chinese government/diplomatic organizations – and also to foreign embassies and diplomatic offices in China.

Despite the persistent myth of security-by-default, virtual infrastructures need protection every bit as much as physical ones. Almost all existing threats are relevant for virtual machines, too.

Spanish magazine Red Seguridad recently granted an award to the Kaspersky CyberSafety Management Games training program.

Security should be multilayered, and use of allowlists is appropriate as one of the security levels.

Information security experts have long been sounding the alarm about the poor defense of industrial systems, and of critical infrastructure systems in particular. Time to start

It now appears the number of servers bought and sold via xDedic might have been underestimated; it’s likely many more IPs have been compromised by xDedic players.

Kaspersky Lab has lately researched an active cybercriminal trading platform xDedic. The main purpose of the xDedic marketplace is to facilitate buying and selling credentials of more than 70,000 hacked servers from all around the world.

Theoretically, every business should have already learned how to protect itself against ransomware. Actually it’s not the case.