Published on: 2025-04-20 15:43:58
Chinese-speaking IronHusky hackers are targeting Russian and Mongolian government organizations using upgraded MysterySnail remote access trojan (RAT) malware. Security researchers at Kaspersky's Global Research and Analysis Team (GReAT) spotted the updated implant while investigating recent attacks where the attackers deployed the RAT malware using a malicious MMC script camouflaged as a Word document, which downloaded second-stage payloads and gained persistence on compromised systems. One o
Keywords: attacks kaspersky malware mysterysnail rat
Find related items on AmazonPublished on: 2025-05-17 18:57:23
A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devices, allowing threat actors to steal data as soon as they are set up. Kaspersky researchers report that this campaign mainly impacts Russian users, with at least 2,600 confirmed infections from March 13 to 27, 2025, based on visibility from its mobile protection tools. The security researchers noted that Triada was found on counterfeit versions of popular smartphone models sold at online stores
Keywords: android devices kaspersky new triada
Find related items on AmazonPublished on: 2025-05-17 23:57:23
A new version of the Triada trojan has been discovered preinstalled on thousands of new Android devices, allowing threat actors to steal data as soon as they are set up. Kaspersky researchers report that this campaign mainly impacts Russian users, with at least 2,600 confirmed infections from March 13 to 27, 2025, based on visibility from its mobile protection tools. The security researchers noted that Triada was found on counterfeit versions of popular smartphone models sold at online stores
Keywords: android devices kaspersky new triada
Find related items on AmazonPublished on: 2025-05-29 07:15:07
Google said it has fixed a vulnerability in its Chrome browser for Windows that malicious hackers have used to break into victims’ computers. In a brief note on Tuesday, Google said that it fixed the vulnerability, tracked as CVE-2025-2783, that was discovered by researchers at security firm Kaspersky earlier this month. Google said it was aware of reports that an exploit for the bug “exists in the wild.” The bug is referred to as a zero-day because the vendor — in this case, Google — was give
Keywords: bug chrome google kaspersky said
Find related items on AmazonPublished on: 2025-05-29 20:42:48
Google has fixed a high-severity Chrome zero-day vulnerability exploited to escape the browser's sandbox and deploy malware in espionage attacks targeting Russian organizations. "Google is aware of reports that an exploit for CVE-2025-2783 exists in the wild," the company said in a security advisory published Tuesday. Tracked as CVE-2025-2783, this vulnerability was discovered by Kaspersky's Boris Larin and Igor Kuznetsov, who described it as an "incorrect handle provided in unspecified circu
Keywords: 2025 2783 attacks exploited kaspersky
Find related items on AmazonPublished on: 2025-06-08 13:52:08
A newly discovered information-stealing malware called Arcane is stealing extensive user data, including VPN account credentials, gaming clients, messaging apps, and information stored in web browsers. According to Kaspersky, the malware has no links or code that overlaps with the Arcane Stealer V, which has been circulating on the dark web for years. The Arcane malware campaign started in November 2024, having gone through several evolutionary steps, including primary payload replacements. A
Keywords: arcane clients discord kaspersky malware
Find related items on AmazonPublished on: 2025-06-25 11:11:21
Cybercriminals are sending bogus copyright claims to YouTubers to coerce them into promoting malware and cryptocurrency miners on their videos. The threat actors take advantage of the popularity of Windows Packet Divert (WPD) tools that are increasingly used in Russia as they help users bypass internet censorship and government-imposed restrictions on websites and online services. YouTube creators catering to this audience publish tutorials on how to use various WPD-based tools to bypass censo
Keywords: kaspersky malware threat tools youtube
Find related items on AmazonPublished on: 2025-07-01 07:15:51
One of the most notorious providers of abuse-friendly “bulletproof” web hosting for cybercriminals has started routing its operations through networks run by the Russian antivirus and security firm Kaspersky Lab, KrebsOnSecurity has learned. Security experts say the Russia-based service provider Prospero OOO (the triple O is the Russian version of “LLC”) has long been a persistent source of malicious software, botnet controllers, and a torrent of phishing websites. Last year, the French securit
Keywords: company kaspersky prospero said software
Find related items on AmazonPublished on: 2025-07-05 21:06:50
Kaspersky Global Research & Analysis Team (GReAT) discovered hundreds of open source repositories with multistaged malware targeting gamers and cryptoinvestors within a new campaign that was dubbed by Kaspersky as GitVenom. The infected projects include an automation instrument for interacting with Instagram accounts, a Telegram bot that enables the remote management of Bitcoin wallets and a crack tool to play the Valorant game. All of this alleged project functionality was fake, and cybercrimin
Keywords: code kaspersky malicious repositories research
Find related items on AmazonPublished on: 2025-07-09 00:14:58
One of the most notorious providers of abuse-friendly “bulletproof” web hosting for cybercriminals has started routing its operations through networks run by the Russian antivirus and security firm Kaspersky Lab, KrebsOnSecurity has learned. Security experts say the Russia-based service provider Prospero OOO (the triple O is the Russian version of “LLC”) has long been a persistent source of malicious software, botnet controllers, and a torrent of phishing websites. Last year, the French securit
Keywords: kaspersky prospero said security software
Find related items on AmazonPublished on: 2025-07-15 10:45:16
A malware campaign dubbed GitVenom uses hundreds of GitHub repositories to trick users into downloading info-stealers, remote access trojans (RATs), and clipboard hijackers to steal crypto and credentials. According to Kaspersky, GitVenom has been active for at least two years, targeting users globally but with an elevated focus on Russia, Brazil, and Turkey. "Over the course of the GitVenom campaign, the threat actors behind it have created hundreds of repositories on GitHub that contain fake
Keywords: files github gitvenom kaspersky repositories
Find related items on AmazonPublished on: 2025-07-14 13:12:56
The Australian government has banned all Kaspersky Lab products and web services from its systems and devices following an analysis that claims the company poses a significant security risk to the country. "After considering threat and risk analysis, I have determined that the use of Kaspersky Lab, Inc. products and web services by Australian Government entities poses an unacceptable security risk to Australian Government, networks and data, arising from threats of foreign interference, espiona
Keywords: australian government kaspersky products security
Find related items on AmazonPublished on: 2025-07-14 11:55:10
Australia has become the latest country to ban government officials from using software made by Russian cybersecurity firm Kaspersky, arguing that the software poses an “unacceptable security risk.” Australia’s Department of Home Affairs last week issued a directive that prohibits government agencies from installing Kaspersky products or web services on official systems and devices, citing national security risks. Government agencies have until April 1 to remove all existing instances of Kasper
Keywords: australia country government kaspersky software
Find related items on AmazonGo K’awiil is a project by nerdhub.co that curates technology news from a variety of trusted sources. We built this site because, although news aggregation is incredibly useful, many platforms are cluttered with intrusive ads and heavy JavaScript that can make mobile browsing a hassle. By hand-selecting our favorite tech news outlets, we’ve created a cleaner, more mobile-friendly experience.
Your privacy is important to us. Go K’awiil does not use analytics tools such as Facebook Pixel or Google Analytics. The only tracking occurs through affiliate links to amazon.com, which are tagged with our Amazon affiliate code, helping us earn a small commission.
We are not currently offering ad space. However, if you’re interested in advertising with us, please get in touch at [email protected] and we’ll be happy to review your submission.