ESET researchers present technical details on a recent data destruction incident affecting a company in Poland’s energy sector

ESET researchers discover an Android spyware campaign targeting users in Pakistan via romance scam tactics, revealing links to a broader spy operation

The attack involved data-wiping malware that ESET researchers have now analyzed and named DynoWiper

A comprehensive analysis and assessment of a critical severity vulnerability with low likelihood of mass exploitation

ESET researchers discovered a China-aligned APT group, LongNosedGoblin, which uses Group Policy to deploy cyberespionage tools across networks of governmental institutions

A view of the H2 2025 threat landscape as seen by ESET telemetry and from the perspective of ESET threat detection and research experts

MuddyWater targets critical infrastructure in Israel and Egypt, relying on custom malware, improved tactics, and a predictable playbook

ESET researchers have discovered a network implant used by the China-aligned PlushDaemon APT group to perform adversary-in-the-middle attacks

An overview of the activities of selected APT groups investigated and analyzed by ESET Research in Q2 2025 and Q3 2025

ESET research analyzes a recent instance of the Operation DreamJob cyberespionage campaign conducted by Lazarus, a North Korea-aligned APT group

ESET researchers have discovered campaigns distributing spyware disguised as Android Signal and ToTok apps, targeting users in the United Arab Emirates

Malware operators collaborate with covert North Korean IT workers, posing a threat to both headhunters and job seekers

Notorious APT group Turla collaborates with Gamaredon, both FSB-associated groups, to compromise high‑profile targets in Ukraine

UEFI copycat of Petya/NotPetya exploiting CVE-2024-7344 discovered on VirusTotal

ESET researchers have identified a new threat actor targeting Windows servers with a passive C++ backdoor and a malicious IIS module that manipulates Google search results

The discovery of PromptLock shows how malicious use of AI models could supercharge ransomware and other threats

ESET Research discovered a zero-day vulnerability in WinRAR being exploited in the wild in the guise of job application documents; the weaponized archives exploited a path traversal flaw to compromise their targets

ESET Research has been monitoring attacks involving the recently discovered ToolShell zero-day vulnerabilities

ESET researchers map out the labyrinthine relationships among the vast hierarchy of AsyncRAT variants