SMB

435 articles

DogWalk and several vulnerabilities in Exchange

DogWalk and other vulnerabilities

Microsoft has released patches for more than 140 vulnerabilities, some of which need to be closed as soon as possible.

LofyLife: malicious packages in npm repository

Four malicious packages in npm repository

New malicious campaign hunts for Discord tokens and credit card information via infected npm packages.

New ransomware: a cross-platform future

The new Luna and Black Basta ransomware strains are capable of attacking Windows, Linux and VMware ESXi.

Microsoft back-pedals on blocking macros

The return of the macro

Microsoft cancels its decision to block macros by default. We discuss the cybersecurity implications for companies.

What do we need neuromorphic processors for?

A mind of their own: we need to talk about neuroprocessors

Why the future belongs to neuromorphic processors, and how they differ from conventional processors in modern devices.

Five reasons why your small business may become a victim of modern cyberthreats.

Five reasons to protect small business from cyberthreats

Five arguments in favor of installing security solutions on the endpoints of a small company.

Kaspersky's experts studied adverts on the darkweb and found out how much access to your company's infrastructure can cost.

Initial access market analysis

Our experts studied the shadow market for initial access to corporate infrastructure.

CVE-2022-30190 aka Follina, a recently found vulnerability in the Windows Support Diagnostic Tool (MSDT), can be exploited via office documents.

Follina: office documents as an entrance

New vulnerability CVE-2022-30190, aka Follina, allows exploitation of Windows Support Diagnostic Tool via MS Office files.

How to improve smart car apps

After conducting a thorough study of applications for connected cars, our experts highlighted a number of flaws of such software.

How to avoid becoming a ransomware victim a second time

How to prevent a ransomware attack from happening again?

For Anti-Ransomware Day, we decided to publish few tips that will help your company avoid falling victim to ransomware for a second time.

Time to update Windows! Microsoft released patches for several dozen of vulnerabilities, including CVE-2022-26925 that is being actively exploited by cybercriminals.

Actively exploited vulnerability in Windows

Time to update Windows! Microsoft has released patches for several dozen vulnerabilities, one of which cybercriminals are actively exploiting.

Is your mic really muted?

We cite an interesting study on how the mute button actually works in teleconferencing services, and discuss privacy in the web conferencing era.

Decryptor for Yanluowang malware

Our cryptanalysts have found a way to decrypt files encrypted by Yanluowang.

BlackCat — new player in the ransomware business

Our experts investigated the activity and studied tools of ransomware gang BlackCat.

128 vulnerabilities in Microsoft products

A bunch of vulnerabilities in Windows, one already exploited

Microsoft patches 128 vulnerabilities in a list of products, including Windows and its components.

Quantum computers and cryptography for dummies

Protect Yourself from Digital Identity Theft

On Identity Management Day 2022, see what you can do to protect your digital identity.

Spring4Shell: critical vulnerability in Spring Java framework

Researchers found critical vulnerability in Spring, a popular Java framework. Here’s how it works, why it’s dangerous and how to protect from it.

Ransomware as a distraction

HermeticRansom cryptor was used as a distraction to support HermeticWiper attacks.

Lurk: an exemplary Cybercrime Inc.

What researchers remember most about the Lurk group.

Typical startup cybersecurity mistakes

Cybersecurity flaws typical for young companies

How to stay safe while working with freelancers

Methods of reasonable protection against potential freelancer related cyberthreats.

Free Tools

SMB