Kaspersky official blog

Vulnerability in the Rubetek Home smart-home app

Not-so-smart home

Our experts at GReAT have uncovered a dangerous vulnerability in a smart-home control app that allowed attackers to disable physical security systems.

Latest

A Kaspersky checklist for a safe vacation

Digital detox: How to take a safe break from screens

Planning a safe digital detox: a checklist to help prepare for a vacation and unwind in peace.

What is cyber-resilience, and how to start implementing it

The ABCs of cyber-resilience

Businesses reaching the “acceptance stage”: given inevitable breaches — how to prepare for them?

Phishing through Google Ads: attacks on SEO and marketing professionals

Fake websites popping up in Google search ads

Scammers are using Google ads to push fake versions of real websites – and they’re after business accounts and company data.

AirBorne: attacks on devices via Apple AirPlay

AirBorne: Attacks on Apple devices through vulnerabilities in AirPlay

Newly discovered vulnerabilities in AirPlay allow attacks on Apple devices and other AirPlay-enabled products over Wi-Fi – including zero-click exploits.

Ransomware group uses ClickFix to attack businesses.

How Interlock attacks IT specialists with fake CAPTCHAs and ClickFix

We explore how cybercriminals are targeting IT specialists searching for a popular network scanner, using the Interlock ransomware attack as an example.

How phishing emails are sent from no-reply@accounts.google.com

Email from Google: law enforcement is looking into your account

Scammers are exploiting Google services to send fake law enforcement inquiry notifications, making them look like they originate from accounts.google.com.

Microsoft Copilot+ Recall: who should disable it, and how

Should you disable Microsoft Recall in 2025?

A year after its disastrous announcement, Microsoft is finally launching its AI-powered Recall feature on Copilot+ PCs. Is the new version secure, and what’s actually changed?

How to implement zero trust: first steps and success factors

Migration to zero trust in practice – including the pitfalls

How organizations implement zero-trust principles, and what CISOs advise for project success.

Gamers

Trojanized game PirateFi discovered on Steam

Gamers beware: Trojans have invaded Steam

If you still think that Steam, Google Play, and the App Store are malware-free, then read this fascinating story about PirateFi and other hacker creations disguised as games.

How cybercriminals attack young gamers: the most common and dangerous scams

How scammers attack young gamers

Autumn is here, kids are going back to school and also meeting up with friends in their favorite online games. With that in mind, we have just carried out one of our biggest ever studies of the threats young gamers are most likely to encounter.

Hackers disrupt Apex Legends esports tournament

Live hack: Apex Legends esports tournament scandal

Hackers have long been engaging with the gaming world: from cracking games and creating cheats, to, more recently, attacking esports players live during an Apex Legends tournament. Regarding the latter, we break down what happened and how it could have been avoided.

Malware in the free game Super Mario 3: Mario Forever

Mario Forever, malware too: a free game with a miner and Trojans inside

Malicious versions of the free-to-download game Super Mario 3: Mario Forever plant a miner and a stealer on gamers’ machines.

Minecraft players under attack

Minecraft mods downloaded from several popular gaming websites contain dangerous malware. What we know so far.

Does antivirus slow down games?

A fresh study on the impact of antivirus on gameplay.

How cybercriminals tailor attacks for different age groups of gamers

The Phantom Menace: how gamers of different ages are being attacked

Why scammers are more likely to target kids than hardcore gamers, how they do it, and what they want to steal

Business

Five new reasons not to pay ransoms

How the situation with ransomware attacks on companies has changed, and why paying a ransom has become an even worse and more useless idea in 2025.

What is ClickFix and how to protect your company

ClickFix technique: what it is and why it’s dangerous

An infection tactic called ClickFix is becoming increasingly popular among cybercriminals. We explain how such attacks work and how to protect your company against it.

What is slopsquatting, and how to protect your organization from it

How AI creates “slopsquatting” supply-chain risks

Popular AI code assistants try to call non-existent libraries. But what happens if attackers actually create them?

Critical vulnerability in PyTorch framework

Researchers have found a way to exploit a security mechanism in a popular machine-learning framework.

Six key areas for cost-effective development of a company's information security function in 2025, with a focus on budget optimization

CISO priorities in 2025

Analyzing the popular CISO MindMap from an economic efficiency perspective.

Free Tools

Latest

Gamers

Business

I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place. Eugene Kaspersky

Tips

Sign up to receive our headlines in your inbox

I firmly believe that the concept of cybersecurity will soon become obsolete, and cyberimmunity will take its place.

Eugene Kaspersky