Business
1211 articles
Kaspersky Endpoint Security for Business
awardSecurity starts with staff
Spanish magazine Red Seguridad recently granted an award to the Kaspersky CyberSafety Management Games training program.
Use of allowlists is not enough
Security should be multilayered, and use of allowlists is appropriate as one of the security levels.
Industrial systems and cyberdefense: Time to forge alliances
Information security experts have long been sounding the alarm about the poor defense of industrial systems, and of critical infrastructure systems in particular. Time to start
APTLarger than meets the eye: xDedic follow-up
It now appears the number of servers bought and sold via xDedic might have been underestimated; it’s likely many more IPs have been compromised by xDedic players.
Operation Daybreak: A brand-new zero-day exploit in Flash
Securelist just released a new cyberespionage campaign alert, code-named “Operation Daybreak.”
xDedic, a platform for selling hacked credentials, serves as an attack starting point
Kaspersky Lab has lately researched an active cybercriminal trading platform xDedic. The main purpose of the xDedic marketplace is to facilitate buying and selling credentials of more than 70,000 hacked servers from all around the world.
RansomwareCryptors: emergency measures to save business data
Theoretically, every business should have already learned how to protect itself against ransomware. Actually it’s not the case.
ATMsWhy ATMs and points of sale need protection and what we have done to provide it
ATMs and point-of-service systems are extremely vulnerable to malware — and software vendors are no longer patching them. Here’s how to make them safer.
Everyone affected: A vulnerability in all versions of Windows past Win2K may be found
A vulnerability affecting all versions of Windows since Windows 2000 through Windows 10 might have been discovered. It’s still uncertain, however.
Embedded software goes out of support: How to stay safe
Although the history of Microsoft Windows XP seemed to end in April 2014, the operating system was not completely gone; many embedded devices still ran Windows XP Embedded Service Pack 3, and as such they were dependent on its security updates.
Danti and Co: Beware of Long-Forgotten Vulnerabilities!
One of the most popular techniques used to penetrate corporate defenses is the use of vulnerabilities found in working software, which, in fact, do not need to be brand-new 0-days.
TeslaCrypt has gone away, ransomware problem hasn’t
In a highly surprising move, the notorious Teslacrypt authors have wrapped up their operation and released the ransomware’s master key.
Android under attacks: old vulnerabilities, present threats
The late April was especially “rich” with news related to bugs, attacks and Android-targeting malware.
How to beat CryptXXX again: an update
An update to RannohDecryptor now allows to beat a newer version of CryptXXX too.
New trends of endpoint protection
Gartner’s Magic Quadrant is a tool that helps to choose which vendor fits organizations best for a particular business purpose. It is designed for CIO’s, decision makers, and IT-security specialists of the businesses.
Hothacking: an obscure Windows feature as an APT weapon
A new APT group is seen to have been exploiting hotpatching, a now-deprecated feature in Windows operating systems, to carry out their attacks.
LockyRansomware: surprising champions
Locky and Petya ransomware strains took the world by storm when they shouldn’t be successful at all.
DDoS in Q1 2016: the turning of tides
Securelist has released a new report on DDoS attacks in the first quarter of 2016.
Testing the mettle: legit tools for illicit cyberespionage
Instead of writing their own malicious tools, criminals are increasingly using the off-the-shelf malware, and more and more often – totally legitimate software.
Cash out with ease: why and how ATMs get attacked
Remember the beginning of Terminator 2: The Judgement Day where John Connor is shown hacking an ATM with an Atari Portfolio?