Kaspersky official blog

CVE-2024-12649: vulnerability in the Canon TTF interpreter

Printers attacked by… fonts

We examine how popular Canon printers could become a foothold for attackers within an organization’s network.

Latest

What is the Pixnapping vulnerability, and how to protect your Android smartphone?

Pixnapping vulnerability: unblockable screenshots of your Android phone

Pixnapping is an Android vulnerability discovered by researchers that allows apps to steal passwords, one-time codes, and other confidential information from the screen without any special permissions from the operating system. How does it work, and what can you do to protect yourself?

FileFix: a new ClickFix variation

Malicious actors have started utilizing a new variation of the ClickFix technique — named “FileFix”. We explain how it works, and how to defend your company against it.

How scammers use email for blackmail and extortion

Email extortion: how scammers use blackmail

You’ve received a threatening email. What’s your next move?

Half of the world's satellite traffic is unencrypted

Don’t look up, or How to intercept satellite data

Researchers have discovered that 50% of data transmitted via satellites is unencrypted. This includes your mobile calls and texts, along with banking, military, government, and other sensitive information. How did this happen, and what can we do about it?

What an MXDR solution for SMBs should be like

The differences between an MXDR service for a large enterprise, and one that would fit perfectly into the security framework of a growing SMB.

Which social media are the most privacy-oriented in 2025

Social media privacy in 2025: what you need to know

Which social networks mostly just display your posts to your friends, and which ones use them for AI training and ad targeting? We explore the 2025 privacy rankings for popular social media platforms.

GhostCall and GhostHire — two campaigns by BlueNoroff

GhostCall and GhostHire: hunting for crypto assets

Two campaigns by the BlueNoroff APT group target developers and executives in the crypto industry.

Privacy rankings of popular messaging apps in 2025

Messaging app privacy: 2025 rankings

Which messaging apps leak the least amount of your data, and provide the most control over your privacy? Today we discuss the latest rankings of popular communication platforms.

Gamers

The CVE-2025-59489 vulnerability in Unity, and how to fix it in games

Vulnerability in Unity game engine

Any game based on the popular Unity engine made in the last eight years can allow attackers to get into your computer or smartphone. Here’s what to do about it.

Viruses on official Steam, Minecraft, and Endgame Gear sites

Gamers under fire: malware on official websites

Official gaming websites and platforms may seem safe, but even there gamers occasionally encounter malware. We break down infection cases involving Endgame Gear, Steam, and Minecraft.

Trojanized game PirateFi discovered on Steam

Gamers beware: Trojans have invaded Steam

If you still think that Steam, Google Play, and the App Store are malware-free, then read this fascinating story about PirateFi and other hacker creations disguised as games.

How cybercriminals attack young gamers: the most common and dangerous scams

How scammers attack young gamers

Autumn is here, kids are going back to school and also meeting up with friends in their favorite online games. With that in mind, we have just carried out one of our biggest ever studies of the threats young gamers are most likely to encounter.

Hackers disrupt Apex Legends esports tournament

Live hack: Apex Legends esports tournament scandal

Hackers have long been engaging with the gaming world: from cracking games and creating cheats, to, more recently, attacking esports players live during an Apex Legends tournament. Regarding the latter, we break down what happened and how it could have been avoided.