vulnerabilitiesHow “zero-clicks” work, and how to defend against them
We discuss what zero-click attacks are, why they’re dangerous, and how to protect your company from them.
Business
635 articles
tipsFour ways to lock your screen on Windows and macOS
Four handy ways to lock your screen on Windows and macOS.
The top-10 mistakes made when configuring enterprise IT systems
Mistakes commonly found in almost every large organization. What should the inforsec team look out for, and what protective measures should they take?
cyberimmunityMyths and reality regarding Cyber Immune technologies
We explore some common misconceptions about the development and application of Cyber Immune products based on KasperskyOS.
APTSecurity Analyst Summit 2023: key research
Four major studies presented by our experts at the SAS 2023 international conference.
A good reason to update Confluence
It’s time to update Confluence Data Center and Confluence Server: they contain a serious vulnerability that allows unauthorized creation of administrator accounts.
side-channelSide Eye: eavesdropping using a smartphone’s video camera
How and why did American researchers try to extract sound from a video signal, and was it worth it?
Container security from A to Z
We take an in-depth look at securing and configuring containerization systems.
A how-not-to guide to password policies
Examples of password policies that will have users tearing their hair out — and why you shouldn’t employ them.
AIKaspersky calls for ethical use of AI in cybersecurity
We propose six principles of ethical use of AI in the cybersecurity industry — to be presented at the global Internet Governance Forum.
GPU.zip: deft theft of secrets from video chips
We look at a new sophisticated attack on AMD and Intel integrated graphics cards.
Dangerous illusions of security: is iOS really more secure than Android?
How to choose a secure mobile platform for work.
Password storage as the cornerstone of security
How online services should store user passwords, and how to minimize the damage in the event of a leak or hack.
Security of Electron-based desktop applications
A few words on why desktop applications based on the Electron framework should be approached with caution.
Dangers of your brand’s doppelgangers
How to protect a company’s reputation from illegal use of its name on the internet.
Self-evaluation questionnaire phishing scam
Attackers invite employees to complete fake self-evaluations to steal corporate credentials.
How to lessen the workload on the CISO and their team
What tasks needlessly overload infosec experts, and how to break the curse of overtime.
Wrong system time and insecure Secure Time Seeding
Why the Windows system time can suddenly change, and how to stop it from happening.
How to stop your site from being a partner in crime
Why criminals want to hack your website, how they might use it in new attacks, and how to stop them.
OSINT: what’s the danger, and how to stay safe
We explain what OSINT is, why it has to be front-of-mind at all times, and how to guard against hackers using it.
What to patch first: prioritizing updates
Some thoughts on what PC software patches should be prioritized and why.