Report

Threat landscape for industrial automation systems. Q4 2024

The percentage of ICS computers on which malicious scripts and phishing pages as well as ransomware were blocked continued to increase.

Blog

Why APTs are so successful – stories from IR trenches

Common TTPs of attacks against industrial organizations. Implants for remote access

Operation SalmonSlalom

Report

Targeted attack on industrial enterprises and public institutions

Report an incident

Reports All

Q4 2024 – a brief overview of the main incidents in industrial cybersecurity

In Q4 2024, 107 incidents were publicly confirmed by victims. All of these incidents are included in the table at the end of the overview, with select incidents described in detail. Report at a glance Attacks leading to insolvency Kreisel Manufacturing | Denial of operations, insolvency | Ransomware German bulk material handling company Kreisel GmbH & […]

25 March 2025

APT and financial attacks on industrial organizations in Q4 2024

Abusing of Telegram to spy and put pressure on their victims’ employees, notifying the victims by printing messages on printers connected to a compromised network – we publish interesting details of attacks on industrial enterprises disclosed at this quarter.

25 March 2025

Threat landscape for industrial automation systems. Regions, Q4 2024

The percentage of ICS computers on which malicious objects were blocked increased in eight regions. Regionally, the percentage ranged from 10.6% in Northern Europe to 31.0% in Africa.

17 March 2025

More reports

Advisories All

KLCERT-22-212: Telit Cinterion (Thales/Gemalto) modules. Exposure of Sensitive Information Through Environmental Variables

09 November 2023

KLCERT-22-193: Telit Cinterion (Thales/Gemalto) modules. Exposure of Sensitive Information to an Unauthorized Actor

09 November 2023

KLCERT-23-018: Telit Cinterion (Thales/Gemalto) modules. Buffer Copy without Checking Size of Input vulnerability

08 November 2023

More advisories

Blog All

Why APTs are so successful – stories from IR trenches
30 May 2023
Unusual penetration techniques – in the wild and in Red Team research
12 December 2022
Draft of the NIST Guide #800-82 – what has changed
24 May 2022
More blog

Services All

Kaspersky ICS CERT provides unique services in the area of industrial automation system and internet-of-things cybersecurity

Stay Informed

Keep up to date on threats and risks relevant to your organization

Get Ready

Empower your workforce with cybersecurity knowledge

Respond

Expert handling of security incidents using our professional services

Transform

Rethink your approach to cybersecurity from the ground up

More services

Events All

Kaspersky ICS CERT experts participate in conferences and conduct training courses, seminars, workshops, and CTF contests
26March 2024

Industrial cybersecurity in 2024: trends and forecasts presented by Evgeny Goncharov, head of Kaspersky’s ICS CERT

22Dec 2021

TÜV Austria Academy will offer Kaspersky training courses

2Dec 2021

Kaspersky Industrial Cybersecurity Conference 2021

More events
Newsletter subscription