routersOutdated Cisco equipment under threat from firmware
Espionage operations to hack corporate routers are now commonplace — and all organizations need to be aware of this.
Business
1131 articles
vulnerabilitiesReptar: a vulnerability in Intel processors
How a recently discovered bug in Intel processors threatens cloud providers.
extensionsMalware that steals Facebook accounts
How attackers use infected archives and malicious browser extensions to steal Facebook Business accounts.
How “zero-clicks” work, and how to defend against them
We discuss what zero-click attacks are, why they’re dangerous, and how to protect your company from them.
tipsFour ways to lock your screen on Windows and macOS
Four handy ways to lock your screen on Windows and macOS.
strategyThe top-10 mistakes made when configuring enterprise IT systems
Mistakes commonly found in almost every large organization. What should the inforsec team look out for, and what protective measures should they take?
Myths and reality regarding Cyber Immune technologies
We explore some common misconceptions about the development and application of Cyber Immune products based on KasperskyOS.
Security Analyst Summit 2023: key research
Four major studies presented by our experts at the SAS 2023 international conference.
A good reason to update Confluence
It’s time to update Confluence Data Center and Confluence Server: they contain a serious vulnerability that allows unauthorized creation of administrator accounts.
side-channelSide Eye: eavesdropping using a smartphone’s video camera
How and why did American researchers try to extract sound from a video signal, and was it worth it?
Container security from A to Z
We take an in-depth look at securing and configuring containerization systems.
A how-not-to guide to password policies
Examples of password policies that will have users tearing their hair out — and why you shouldn’t employ them.
Kaspersky calls for ethical use of AI in cybersecurity
We propose six principles of ethical use of AI in the cybersecurity industry — to be presented at the global Internet Governance Forum.
GPU.zip: deft theft of secrets from video chips
We look at a new sophisticated attack on AMD and Intel integrated graphics cards.
Dangerous illusions of security: is iOS really more secure than Android?
How to choose a secure mobile platform for work.
Password storage as the cornerstone of security
How online services should store user passwords, and how to minimize the damage in the event of a leak or hack.
Security of Electron-based desktop applications
A few words on why desktop applications based on the Electron framework should be approached with caution.
Dangers of your brand’s doppelgangers
How to protect a company’s reputation from illegal use of its name on the internet.
Self-evaluation questionnaire phishing scam
Attackers invite employees to complete fake self-evaluations to steal corporate credentials.
How to lessen the workload on the CISO and their team
What tasks needlessly overload infosec experts, and how to break the curse of overtime.
Wrong system time and insecure Secure Time Seeding
Why the Windows system time can suddenly change, and how to stop it from happening.