- Old tech, new vulnerabilities: NTLM abuse, ongoing exploitation in 2025
by Leandro Cuozzo on November 26, 2025 at 10:00 amThis article covers NTLM relay, credential forwarding, and other NTLM-related vulnerabilities and cyberattacks discovered in 2025.
- Exploits and vulnerabilities in Q2 2025
by Alexander Kolesnikov on August 27, 2025 at 10:00 amThis report provides statistical data on published vulnerabilities and exploits we researched in Q2 2025. It also includes summary data on the use of C2 frameworks.
- Driver of destruction: How a legitimate driver is being used to take down AV processes
by Cristian Souza, Ashley Muñoz, Eduardo Ovalle, Francesco Figurelli, Anderson Leite on August 6, 2025 at 10:00 amIn an incident response case, Kaspersky experts discovered new malware that terminates AV processes by abusing the legitimate ThrottleStop driver. Kaspersky solutions successfully counter and detect this threat.
- ToolShell: a story of five vulnerabilities in Microsoft SharePoint
by Boris Larin, Georgy Kucherin, Ilya Savelyev on July 25, 2025 at 7:00 amExplaining the ToolShell vulnerabilities in SharePoint: how the POST request exploit works, why initial patches can be easily bypassed, and how to stay protected.
- Analysis of the latest Mirai wave exploiting TBK DVR devices with CVE-2024-3721
by Anderson Leite on June 6, 2025 at 10:00 amKaspersky GReAT experts describe the new features of a Mirai variant: the latest botnet infections target TBK DVR devices with CVE-2024-3721.
- Exploits and vulnerabilities in Q1 2025
by Alexander Kolesnikov on May 30, 2025 at 12:00 pmThis report contains statistics on vulnerabilities and published exploits, along with an analysis of the most noteworthy vulnerabilities we observed in the first quarter of 2025.
- Operation SyncHole: Lazarus APT goes back to the well
by Sojun Ryu, Vasily Berdnikov on April 24, 2025 at 5:00 amKaspersky GReAT experts uncovered a new campaign by Lazarus APT that exploits vulnerabilities in South Korean software products and uses a watering hole approach.
- How ToddyCat tried to hide behind AV software
by Andrey Gunkin on April 7, 2025 at 10:00 amWhile analyzing a malicious DLL library used in attacks by APT group ToddyCat, Kaspersky expert discovered the CVE 2024-11859 vulnerability in a component of ESET’s EPP solution.
- Exploits and vulnerabilities in Q4 2024
by Alexander Kolesnikov on February 26, 2025 at 10:00 amThis report provides statistics on vulnerabilities and exploits and discusses the most frequently exploited vulnerabilities in Q4 2024.
- Mercedes-Benz Head Unit security research report
by Kaspersky Security Services on January 17, 2025 at 10:00 amKaspersky experts analyzed the Mercedes-Benz head unit, its IPC protocols and firmware, and found new vulnerabilities via physical access.
Vulnerabilities and Exploits
We are an ethical website cyber security team and we perform security assessments to protect our clients.