Anton Ivanov

RansomEXX Trojan attacks Linux systems - securelist.com/ransomexx-troj…

The new standards of quality set by MITRE ACC&CK for such #security solutions as #EDR and #MDR benefit both vendors and clients: the former better understand where to invest their resources while the latter can make an informed choice kaspersky.com/mitre

We put together a no nonsense FAQ about the recent patch KB4524244 and the fuzz around the UEFI sigs update: kaspersky.com/blog/microsoft…

A lot has been written about CVE-2020-0601 and POCs, the question that you should be asking is does your security solution protect you? Our @kaspersky products do, regardless of your version of #Windows version.

One more 0-day exploit was used in #WizardOpium operation securelist.com/windows-0-day-…

A few days ago our technologies caught a new Chrome 0day exploit used in the wild and we reported it to Google. Just released-Chrome 78 patches it, credits to my colleagues @antonivanovm and Alexey Kulaev for finding the bug. chromereleases.googleblog.com/2019/10/stable…

Chrome 0-day exploit was used in #WizardOpium operation. Details securelist.com/chrome-0-day-e…

#Sodin #ransomware exploits ✔️ Windows vulnerability ✔️ processor architecture ✔️Oracle Weblogic vulnerability ✔️ attacks MSP providers. Very unusual #ransomware. Technical details: kas.pr/h3eh

We analyzed the vulnerability CVE-2019-0708 and can confirm that it is exploitable. We have therefore developed detection strategies for attempts to exploit it and would now like to share those with trusted industry parties. Please contact: nomoreworm@kaspersky.com

We found one more #zeroday exploit that was used in APT. securelist.com/new-win32k-zer…

We found one more #zeroday exploit! Details soon.

Asus Live Updater was used in a big supply chain attack we dubbed Operation #ShadowHammer. We estimate this may have affected over 1 million computer users between June and Nov 2018. motherboard.vice.com/en_us/article/…

How did Kaspersky Lab technologies find three #zerodays in three months? Watch as our Advanced Threats Research and Detection Team talk about how our technology successfully identified and blocked them. brighttalk.com/webcast/15591/…

#SandCat is a new APT we discovered only recently. In addition to CVE-2019-0797 and CHAINSHOT, #SandCat also uses the FinFisher/FinSpy framework.

One more #zeroday exploit was used in APT attack. securelist.com/cve-2019-0797-…

Me and @antonivanovm will present our new research "Momigari: Overview of the latest Windows OS kernel exploits found in the wild" with all juicy details about CVE-2018-8453, CVE-2018-8589, CVE-2018-8611. #CanSecWest

Congratulations to @KasperskyICS with a great demonstration of their skill and expertise at #S4x19

Here are the slides for the "Catching multilayered zero-day attacks on MS Office" talk i gave with @oct0xor at #AVAR2018 slideshare.net/KasperskyLabGl…

Three major 0-days found and neutralized in three months. That's how proactive security technologies work in @kaspersky products securelist.com/zero-day-in-wi…

#zeroday exploit in Windows Kernel Transaction Manager was used in APT attack. securelist.com/zero-day-in-wi…