Kaspersky official blog

If you’ve ever downloaded game cheats from a YouTuber’s “link in the description”, your computer might be infected with a stealer.

How to respond to a compromised GitHub changed-files Action incident.

We dive into the mechanics of the controversial nude-scanning app that has mysteriously materialized on a billion phones.

Reasons for updating your ESXi infrastructure ASAP, and enterprise threats that VM escape poses.

Microsoft’s March Patch Tuesday fixes several vulnerabilities that have already been used in the wild. Details are not clear at the moment, but it’s worth installing the patches ASAP.

Takeaways for regular crypto holders from the biggest crypto heist in history.

We’ve added technology that checks QR codes in emails for phishing links.

We found several groups of sites mimicking official websites of the DeepSeek and Grok chatbots. Fake sites distribute malware under the guise of non-existent chatbot clients for Windows.

Cybercriminals are blackmailing YouTube bloggers into posting malware links in their video descriptions.

What information does an MDR service need to protect a company from complex targeted attacks?

Online converters are a tempting but dangerous way to change file formats. We tell you how to convert files and not get trojanized.

A vulnerability in Google OAuth allows attackers to access accounts of defunct organizations through abandoned domains.

We break down the most covert mechanism of smartphone surveillance using real-life examples.

A step-by-step guide to scanning disk arrays weighing tens of terabytes with the aid of Kaspersky products.

We discovered over 200 repositories with fake projects on GitHub. Using them, attackers distribute stealers, clippers, and backdoors.

What is Auto-Woodpecker, and what does it have to do with AI?

Eight signs your WhatsApp account has been stolen — and steps to recover and protect it.

A year after the ransomware attack on healthcare giant UnitedHealth Group, we’ve compiled all publicly available information about the incident and its aftermath.

Just a few hours before 2025, we recorded a surge in cryptominer distribution through video games. Interestingly, not only home PCs but also corporate machines were affected.

The recent leak at major location-data broker, Gravy Analytics, shines a light on the implications of mass location-data collection.

If you still think that Steam, Google Play, and the App Store are malware-free, then read this fascinating story about PirateFi and other hacker creations disguised as games.