Reports

Threat landscape for industrial automation systems. Ransomware and other malware: key events of H2 2019

24 April 2020

This section presents an overview of threats related to ransomware activity against municipal institutions, industrial enterprises and critical infrastructure facilities.
Threat landscape for industrial automation systems. Overall global statistics – H2 2019

24 April 2020

The statistical data presented in the report was received from ICS computers protected by Kaspersky products that Kaspersky ICS CERT categorizes as part of the industrial infrastructure at organizations.
WildPressure targets industrial-related entities in the Middle East

26 March 2020

We found just three almost unique samples, all in one country. So we consider the attacks to be targeted and have currently named this operation WildPressure.
Biometric data processing and storage system threats

02 December 2019

Biometric data processing and storage Threats blocked on biometric data processing and storage systems Research focus Reporting period One third of systems under threat Threat sources Most dangerous Conclusion Initially, digital biometric data processing systems were used primarily by government agencies and special services (police, customs, etc.). However, the rapid evolution of information technology has...
VNC vulnerability research

22 November 2019

Preparing for the research System description Possible attack vectors Objects of research Prior research Research findings LibVNC TightVNC TurboVNC UltraVNC CVE-2018-15361 CVE-2019-8262 Conclusion   In this article, we discuss the findings of research which covered several different implementations of a remote access system called Virtual Network Computing (VNC). As a result of this research, we...
Threat landscape for industrial automation systems, H1 2019

30 September 2019

This report includes some of the findings we arrived at while analyzing statistics on the threats blocked in H1 2019, which, we believe, could be important for a wide range of our readers. The report includes descriptions of dangerous threats, as well as some suggestions, which we believe to be valid, on vectors possibly used by malware to penetrate ICS computers.
Threat landscape for smart buildings. H1 2019 in brief

19 September 2019

We decided to study the live threats to building-based automation systems and to see what malware their owners encountered in the first six months of 2019.
Security research: CODESYS Runtime, a PLC control framework. Part 3

18 September 2019

This article continues the discussion of research on popular OEM technologies that are implemented in the products of a large number of vendors. Vulnerabilities in such technologies are highly likely to affect the security of many, if not all, products that use them. In some cases, this means hundreds of products that are used in industrial environments and in critical infrastructure facilities. This is the case with CODESYS Runtime, a framework by CODESYS designed for developing and executing industrial control system software.
Security research: CODESYS Runtime, a PLC control framework. Part 2

18 September 2019

This article continues the discussion of research on popular OEM technologies that are implemented in the products of a large number of vendors. Vulnerabilities in such technologies are highly likely to affect the security of many, if not all, products that use them. In some cases, this means hundreds of products that are used in industrial environments and in critical infrastructure facilities. This is the case with CODESYS Runtime, a framework by CODESYS designed for developing and executing industrial control system software.
Security research: CODESYS Runtime, a PLC control framework. Part 1

18 September 2019

This article continues the discussion of research on popular OEM technologies that are implemented in the products of a large number of vendors. Vulnerabilities in such technologies are highly likely to affect the security of many, if not all, products that use them. In some cases, this means hundreds of products that are used in industrial environments and in critical infrastructure facilities. This is the case with CODESYS Runtime, a framework by CODESYS designed for developing and executing industrial control system software.