Print

Kaspersky Lab Named a Leader in Gartner’s Magic Quadrant for Endpoint Protection Platforms for the Fifth Consecutive Year

Kaspersky Lab recently announced that it has been positioned in the “Leaders” quadrant of the 2016 Gartner Magic Quadrant for Endpoint Protection Platforms. The evaluation was based on the criteria for both “completeness of vision” and “ability to execute.” This is the fifth year in a row the company has received a leadership position from Gartner.

Poseidon_Figure 2 copy copy

Kaspersky Lab Exposes the Poseidon Group: A Commercial Malware Boutique Operating on Land, Air and Sea

Kaspersky Lab’s Global Research and Analysis Team has announced the discovery of the Poseidon Group, an advanced threat actor active in global cyber-espionage operations since at least 2005. What makes the Poseidon Group stand out is that it’s a commercial entity, whose attacks involve custom malware digitally signed with rogue certificates deployed to steal sensitive data from victims to coerce them into a business relationship. In addition, the malware is designed to function specifically on English and Brazilian Portuguese Windows machines, a first for a targeted attack.

Carbanak and Metel_Figure 2 copy copy

Carbanak and beyond: banks face new attacks

A year after Kaspersky Lab warned that cyber-criminals would start to adopt the tools and tactics of nation-state backed APTs in order to rob banks, the company has confirmed the return of Carbanak as Carbanak 2.0 and uncovered two more groups working in the same style: Metel and GCMAN. They attack financial organizations using covert APT-style reconnaissance and customized malware along with legitimate software and new, innovative schemes to cash out.

Adwind_Figure 1 copy copy

Adwind: Malware-as-a-Service Platform that Hit more than 400,000 Users and Organizations Globally

10 February 2016 Kaspersky Lab’s Global Research and Analysis Team has published extensive research on the Adwind RAT, a cross-platform, multifunctional malware program also known as AlienSpy, Frutas, Unrecom, Sockrat, JSocket and jRat, and which is distributed through a single malware-as-a-service platform. According to the results of the investigation, conducted between 2013 and 2016, different versions of the Adwind malware have been used in attacks against at least 443,000 private users, commercial and non-commercial organizations around the world. The platform and the malware are still active.