Today we share details about Operation Triangulation, a campaign targeting iOS devices of Kaspersky employees. It was an unprecedented investigation, and we've done a lot to study this campaign with great scrutiny. Report and IoCs here: https://t.co/t3w02W2DJy. @kucher1n @2igosha

Announcing the #TheSAS2025 #CTF winners! Congratulations to @C4TBuTS4D for taking the absolute win in the A/D and first-blooding 2 of the 4 services, including the trickiest one. Kudos to SKSD and dtl for their well-deserved 2nd and 3rd places. Every team received a check with a

After 24 hours without sleep and an insane amount of caffeine, we were able to win the MENA region league in Kaspersky CTF. And by that, our team secured a spot in SAS 2025 CTF final in Khao Lak, Thailand, on October 25-28. See you in Thailand （づ￣3￣）づ╭❤️～

🚀 If you plan to join @kaspersky #CTF and want advice from a seasoned player, check out the webinar recording from yesterday! @bzvr_, one of the CTF organizers, shares the basics and practical examples to help you win in Kaspersky{CTF}. 🌴 Winners of the five regional

We're excited to announce our upcoming Capture The Flag (CTF) competition designed for corporate cybersecurity teams and academic institutions. Join us on August 30 for a 24-hour online challenge that will test your team’s skills in real-world threat scenarios. Form your squad.

A few weeks ago, I was responding to a cybersecurity incident - $500,000 have been stolen from a #blockchain developer. The infected operating system was freshly installed, and the victim was vigilant about cybersecurity. How could this happen? New supply chain attack? [1/6]

We have released four selected writeups for SAS CTF Quals. Check them out at https://t.co/4zB5c7BxRs !

The hardcoded attacker-controlled cryptocurrency wallet addresses are: addresses = { "btc": "bc1qxpz2e8taktzesd0sd53lzmj87m5nkvu3fp82rk", "eth": "0x1842082Ff98E91495BDE6C6F9162F17AB9A9d3Cd", "ltc": "LVCC3oZgciRWWBENTvwXPPgsw2KKpmVR7x", "trx":

The malicious payloads are downloaded from 196.251.81[.]229 (2.txt, clippa.txt, and svchost.bat). clippa.txt is a clipper that uses the Pyperclip library to replace clipboard content with attacker-controlled addresses from its config.

🚨We just discovered 3 malicious Python packages uploaded to PyPI today that are typosquatting the popular crypto library fernet. The payload chain drops several files including a clipper that swaps BTC, ETH, SOL & many other wallet addresses. Details and IOCs in the thread 👇

Thrilled to announce we got 2nd place 🥈 with @ProjectSEKAIctf as P1G SEKAI last weekend and made it to the SAS CTF 2025 final! 🚀 Big shoutout to @TheSAScon for the amazing organization and innovative challenges 🧩 Can't wait to see everyone in Thailand! 🇹🇭🔥

We qualified for the SAS CTF finals by @TheSAScon once again this year🥳!! Looking forward to seeing everyone else in Thailand for the finals

Secured 2nd place at SAS CTF Quals with @r3kapig this weekend🎉Thanks to @TheSAScon for organizing the event and look forward to the finals in Thailand!

🚨 Less than 10 days until the SAS CTF 2025 Quals kick off! 🚨 Register your team now and claim the spot in the top 8 to compete for a share of the $18,000 prize pot at the on-site finals at the SAS conference in Thailand. Register: https://t.co/8ctDh4CC5W

🔐 Ready to test your skills? The SAS CTF 2025 qualifiers are open! Compete for a share of $18,000 and a spot at the Security Analyst Summit in Thailand. 🌏💻 ⏳ Online qualifiers: May 17 🏆 Finals: Oct 26–29 @ SAS 2025 Last year: 800+ teams battled—only 8 advanced. Will you make

I'm really happy to announce that we've just opened registration for the SAS CTF 2025 qualifying round!⛳️ This year's top 8 teams will qualify for the onsite finals to compete for a share of the $18.000 prize pool at the Security Analyst Summit conference in Khao Lak, Thailand

🎉 It’s official – #SAS2025 is coming! The world’s GReATest cybersecurity event returns with cutting-edge research, mind-blowing hacks, and the ultimate CTF finale. You won't want to miss this, book your place now: https://t.co/JWVeccqyVH

We (me + @2igosha) have discovered a new Google Chrome 0-day that is being used in targeted attacks to deliver sophisticated spyware 🔥🔥🔥. It was just fixed as CVE-2025-2783 and we are revealing the first details about it and “Operation ForumTroll”

A new malicious package 'empty-validator-plugin' was uploaded to npm 3 hours ago. C2 server: 45.61.151[.]71