threats

Scammers are using Google ads to push fake versions of real websites – and they’re after business accounts and company data.

Newly discovered vulnerabilities in AirPlay allow attacks on Apple devices and other AirPlay-enabled products over Wi-Fi – including zero-click exploits.

We explore how cybercriminals are targeting IT specialists searching for a popular network scanner, using the Interlock ransomware attack as an example.

Scammers are exploiting Google services to send fake law enforcement inquiry notifications, making them look like they originate from accounts.google.com.

Why highlighted links to visited sites can be dangerous, and why a solution was over 20 years in the making.

A dozen short and simple tips on how to use WhatsApp, Telegram, Signal, iMessage, WeChat, and other messaging apps safely and hassle-free.

Archives are being used in targeted phishing and other attacks on organizations. What tools, settings, and policies can mitigate the threat?

Scammers are exploiting GetShared to bypass email security.

Attackers use the polyglot technique to disguise malware. We explain what it is and how to protect your company against attacks.

New malware targets magic enthusiasts — sending stolen data to an “astral cloud server”.

Apple’s Find My network can be exploited to remotely track other vendors’ Android, Windows, and Linux devices.

A security researcher has investigated his own smart mattress cover, discovering several ways to hack it — including through a backdoor preinstalled by the developer.

We dive into the mechanics of the controversial nude-scanning app that has mysteriously materialized on a billion phones.

Takeaways for regular crypto holders from the biggest crypto heist in history.

Cybercriminals are blackmailing YouTube bloggers into posting malware links in their video descriptions.

What information does an MDR service need to protect a company from complex targeted attacks?

A vulnerability in Google OAuth allows attackers to access accounts of defunct organizations through abandoned domains.

A step-by-step guide to scanning disk arrays weighing tens of terabytes with the aid of Kaspersky products.

Eight signs your WhatsApp account has been stolen — and steps to recover and protect it.

A year after the ransomware attack on healthcare giant UnitedHealth Group, we’ve compiled all publicly available information about the incident and its aftermath.

Just a few hours before 2025, we recorded a surge in cryptominer distribution through video games. Interestingly, not only home PCs but also corporate machines were affected.