Securelist by Kaspersky

ID: 7acde381-77f7-5839-9aa3-97396d60a4fa

STIX ID: identity--7acde381-77f7-5839-9aa3-97396d60a4fa

Feed Type: rss

Earliest post: 2023-12-12

Latest post: 2026-05-29

Threat research, malware & APT analyses, and cyber-crime reports from experts — providing data-driven insight on emerging threats, ransomware, phishing, and targeted attacks worldwide.

Exclude posts that do not describe a security incident

Classification

Min Pub Date

01/01/2020

Max Pub Date

05/29/2026

Title	Date Published ↓	Describes Incident	Author	Visible
What’s in the container? Analyzing vulnerabilities, risks and protection with Kaspersky Container Security and the KIRA AI assistant	2026-05-29	True	Yaroslav Shmelev, Anton Kivva, Denis Parinov, Vladimir Kuskov, Yanina Balandyuk-Opalinskaya	True
Pirates in the crosshairs: how one cybercrime gang has been infecting book, movie, and TV show fans for years	2026-05-28	True	Konstantin Krasilnikov, Valery Akulenko, Artem Snegirev	True
Cloud Atlas activity in the second half of 2025 and early 2026: new tools and a new payload	2026-05-22	True	Kaspersky	True
How an image could compromise your Mac: understanding an ExifTool vulnerability (CVE-2026-3102)	2026-05-20	True	Lucas Tay	True
IT threat evolution in Q1 2026. Mobile statistics	2026-05-18	True	Anton Kivva	True
IT threat evolution in Q1 2026. Non-mobile statistics	2026-05-18	True	AMR	True
Kimsuky targets organizations with PebbleDash-based tools	2026-05-14	True	Sojun Ryu	True
State of ransomware in 2026	2026-05-12	True	Fabio Assolini, Marc Rivero, Maher Yamout, Darya Gorodilova	True
CVE-2025-68670: discovering an RCE vulnerability in xrdp	2026-05-08	True	Denis Skvortsov, Dmitry Shmoylov	True
Exploits and vulnerabilities in Q1 2026	2026-05-07	True	Alexander Kolesnikov	True
OceanLotus suspected of using PyPI to deliver ZiChatBot malware	2026-05-06	True	GReAT	True
Websites with an undefined trust level: avoiding the trap	2026-05-06	True	Lama Saqqour, Anna Larkina	True
Silver Fox uses the new ABCDoor backdoor to target organizations in Russia and India	2026-04-30	True	Anton Kargin, Vladimir Gursky, Victoria Vlasova, Anna Lazaricheva	True
PhantomRPC: A new privilege escalation technique in Windows RPC	2026-04-24	True	Haidar Kabibo	True
FakeWallet crypto stealer spreading through iOS apps in the App Store	2026-04-20	True	Sergey Puzan	True
FakeWallet crypto stealer spreading through iOS apps in the App Store	2026-04-20	True	Sergey Puzan	True
Threat landscape for industrial automation systems in Q4 2025	2026-04-15	True	Kaspersky ICS CERT	True
JanelaRAT: a financial threat targeting users in Latin America	2026-04-13	True	GReAT	True
The long road to your crypto: ClipBanker and its marathon infection chain	2026-04-09	True	Oleg Kupreev	True
Financial cyberthreats in 2025 and the outlook for 2026	2026-04-08	True	Olga Altukhova, Oleg Kupreev, Polina Tretyak	True
A laughing RAT: CrystalX combines spyware, stealer, and prankware features	2026-04-01	True	GReAT	True
An AI gateway designed to steal your data	2026-03-26	True	Vladimir Gursky	True
Coruna: the framework used in Operation Triangulation	2026-03-26	True	Boris Larin	True
Anatomy of a Cyber World Global Report 2026	2026-03-25	True	Kaspersky Security Services	True
The SOC Files: Time to “Sapecar”. Unpacking a new Horabot campaign in Mexico	2026-03-18	True	Domenico Caldarella, Mateus Salgado	True
Free real estate: GoPix, the banking Trojan living off your memory	2026-03-16	True	GReAT	True
BeatBanker: A dual‑mode Android Trojan	2026-03-10	True	GReAT	True
Exploits and vulnerabilities in Q4 2025	2026-03-06	True	Alexander Kolesnikov	True
Mobile malware evolution in 2025	2026-03-04	True	Anton Kivva	True
Arkanix Stealer: a C++ & Python infostealer	2026-02-19	True	Kirill Korchemny, Omar Amin	True
Divide and conquer: how the new Keenadu backdoor exposed links between major Android botnets	2026-02-17	True	Dmitry Kalinin	True
The game is over: when “free” comes at too high a price. What we know about RenEngine	2026-02-11	True	Denis Brylev, Pavel Sinenko, Maxim Starodubov, Artem Ushkov	True
Spam and phishing in 2025	2026-02-11	True	Tatyana Kulikova, Olga Altukhova, Roman Dedenok, Andrey Kovtun, Irina Shimko, Anna Lazaricheva	True
Stan Ghouls targeting Russia and Uzbekistan with NetSupport RAT	2026-02-05	True	Kaspersky	True
The Notepad++ supply chain attack — unnoticed execution chains and new IoCs	2026-02-03	True	Georgy Kucherin, Anton Kargin	True
Supply chain attack on eScan antivirus: detecting and remediating malicious updates	2026-01-29	True	Georgy Kucherin, Kirill Korchemny, Ilya Savelyev	True
HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns	2026-01-27	True	Fareed Radzi	True
The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor	2025-12-29	True	Noushin Shabab	True
Evasive Panda APT poisons DNS requests to deliver MgBot	2025-12-24	True	Fatih Şensoy	True
From cheats to exploits: Webrat spreading via GitHub	2025-12-23	True	Maxim Starodubov	True
Cloud Atlas activity in the first half of 2025: what changed	2025-12-19	True	Kaspersky	True
Operation ForumTroll continues: Russian political scientists targeted using plagiarism reports	2025-12-17	True	Georgy Kucherin	True
God Mode On: how we attacked a vehicle’s head unit modem	2025-12-16	True	Alexander Kozlov, Sergey Anufrienko, Kaspersky ICS CERT	True
Frogblight threatens you with a court case: a new Android banker targets Turkish users	2025-12-15	True	Georgy Bubenok	True
Hunting for Mythic in network traffic	2025-12-11	True	Valery Akulenko, Dmitry Sabadash	True
It didn’t take long: CVE-2025-55182 is now under active exploitation	2025-12-11	True	Kaspersky, Yaroslav Shmelev	True
Shai Hulud 2.0, now with a wiper flavor	2025-12-03	True	Kaspersky	True
Exploits and vulnerabilities in Q3 2025	2025-12-03	True	Alexander Kolesnikov	True
Tomiris wreaks Havoc: New tools and techniques of the APT group	2025-11-28	True	Oleg Kupreev, Artem Ushkov	True
Old tech, new vulnerabilities: NTLM abuse, ongoing exploitation in 2025	2025-11-26	True	Leandro Cuozzo	True