Kaspersky official blog

Fake BTS ARIRANG tour tickets: K-pop fans being targeted by scammers

Fake ticket websites exploiting BTS world tour

Kaspersky experts have detected fake websites that steal money from BTS fans during ticket pre sales. We explain how to stay vigilant and not fall victim to the scammers.

Latest

Hardening security management console settings

Is your security system secure?

Protecting a security console is more critical than one might think. Here’s the lowdown on control-layer compromise, and how to keep it from happening.

The dangers of telehealth: data breaches, phishing, and spam

Is telehealth actually safe?

Telehealth services and apps are blowing up in popularity right now, making the availability of medical services better than ever. But just how safe is telemedicine, and what kind of risks does it carry?

Open-source vulnerability management architecture

How to manage vulnerabilities when developing or using open-source software.

Risks, emerging when developing or using open-source software

Open-source vulnerabilities: now a problem for every business

How the AI boom and increasing reliance on open-source components are piling up corporate security debt — and what you can actually do about it.

CrystalX RAT can flip your screen and steal your crypto

The new CrystalX remote access Trojan looks like the prank viruses of the 90s on the surface, but it causes a lot more damage. It spies on all that’s happening on your computer, steals cryptocurrency and accounts, and gives the attacker full control over your device. We break down how it works, and how to avoid becoming a victim.

An iron curtain for AI: how to improve autonomous AI agent security

Why AI agents need an iron curtain

Researcher Niels Provos’ prototype IronCurtain architecture: a system designed to restrict the actions of AI agents through isolation and security policies.

How scammers use legitimate surveys to link to malicious sites

Survey-based scams

Spammers have figured out how to hide links to fraudulent sites within surveys created on legitimate platforms. We’re breaking down the ruse and sharing tips on how to avoid falling for it.

Trojanization of Trivy, Checkmarx, and LiteLLM solutions

Supply chain attack via Trivy and LiteLLM

How open-source security solutions became the starting point for a massive attack on other popular applications, and what organizations that use them should do.

Gamers

The CVE-2025-59489 vulnerability in Unity, and how to fix it in games

Vulnerability in Unity game engine

Any game based on the popular Unity engine made in the last eight years can allow attackers to get into your computer or smartphone. Here’s what to do about it.

Viruses on official Steam, Minecraft, and Endgame Gear sites

Gamers under fire: malware on official websites

Official gaming websites and platforms may seem safe, but even there gamers occasionally encounter malware. We break down infection cases involving Endgame Gear, Steam, and Minecraft.

Trojanized game PirateFi discovered on Steam

Gamers beware: Trojans have invaded Steam

If you still think that Steam, Google Play, and the App Store are malware-free, then read this fascinating story about PirateFi and other hacker creations disguised as games.

How cybercriminals attack young gamers: the most common and dangerous scams

How scammers attack young gamers

Autumn is here, kids are going back to school and also meeting up with friends in their favorite online games. With that in mind, we have just carried out one of our biggest ever studies of the threats young gamers are most likely to encounter.

Hackers disrupt Apex Legends esports tournament

Live hack: Apex Legends esports tournament scandal

Hackers have long been engaging with the gaming world: from cracking games and creating cheats, to, more recently, attacking esports players live during an Apex Legends tournament. Regarding the latter, we break down what happened and how it could have been avoided.