Business

Discontinuing mandatory password rotations, banning outdated MFA methods, and other updates in the NIST SP 800-63 standards for digital account authentication and management.

AI has dozens of applications in cybersecurity. Which ones are the most effective?

Today we talk about our five main centers of expertise and their contribution to Kaspersky’s products, threat intelligence and expert cybersecurity services.

Our developments, products, research, patents and expert teams harnessed for AI.

Telegram bot sells subscriptions to phishing tools to hack Microsoft 365 accounts, including 2FA bypass.

A simple technology that significantly improves email protection.

Today we tell you about our practices for releasing new products, and also updating existing releases, which reduce the risk of large-scale incidents.

Managing cybersecurity risks through an evidence-based approach.

Although Microsoft has radically revised the rollout plan for its controversial Recall feature, cybersecurity teams can’t afford to ignore the issue of “AI onlookers.

The story of how CrowdStrike released an update on a Friday and brought down thousands, tens of thousands, or maybe even hundreds of thousands of computers around the world.

A zero-day vulnerability actively exploited by attackers has been discovered in Internet Explorer — the browser that Microsoft supposedly laid to rest over a year ago.

Someone is targeting security experts using an archive that allegedly contains an exploit for the regreSSHion vulnerability.

The JavaScript CDN service Polyfill.io has started spreading malicious code. Remove the service’s script from your website.

A new vulnerability allows remote attackers to gain root privileges on Linux servers. How easy is it for CVE-2024-6387 to be exploited – and how to prevent it

Developers’ accounts are being hijacked using fake job offers sent from a legitimate GitHub address.

Based on our analysis of ZKTeco vulnerabilities, we dissect the risks associated with biometric authentication.

Our experts have discovered ransomware they’ve dubbed “ShrinkLocker”, which encrypts infected computers’ drives using BitLocker — a utility built into Windows.

Cybercriminals are using genuine Facebook infrastructure to send phishing emails threatening to block accounts.

Threat actors are targeting hotel staff with malicious and phishing e-mails.

We’ve released a free application that allows you to scan Linux systems for known cyberthreats.

Today we discuss which services and applications should be patched first, and what attackers are focusing on.