AsyncRAT has cemented its place as a cornerstone of modern malware and as a pervasive threat that has evolved into a ...

The H1 2025 issue of the ESET Threat Report reviews the key trends and developments that shaped the threat landscape from November 2024 to May 2025 ...

ESET researchers uncover a Russia-aligned espionage operation that they named RoundPress and that targets webmail servers via XSS vulnerabilities.

Attacks on the education sector are surging: How can cyber-defenders respond? Academic institutions have a unique set of characteristics that makes them attractive to bad actors. What's the right ...

Educación: Mi formación universitaria es en TI para posteriormente especializarme con una maestría en Seguridad de la Información en el IPN. Resumen de carrera: Técnico en soporte a equipos ...

Operation AkaiRyū: MirrorFace invites Europe to Expo 2025 and revives ANEL backdoor ESET researchers uncovered MirrorFace activity that expanded beyond its usual focus on Japan and targeted a ...

DeceptiveDevelopment targets freelance software developers through spearphishing on job-hunting and freelancing sites, aiming to steal cryptocurrency wallets and login information from browsers ...

ESET researchers uncover a supply-chain attack against a VPN provider in South Korea by a new China-aligned APT group we have named PlushDaemon.

Following the takedown of RedLine Stealer by international authorities, ESET researchers are publicly releasing their research into the infostealer’s backend modules.

ESET researchers uncover new Rust-based tools that we named MDeployer and MS4Killer and that are actively utilized by a new ransomware group called Embargo.

ESET Research analyzed two separate toolsets for breaching air-gapped systems, used by a cyberespionage threat actor known as GoldenJackal.