Positive Technologies

NEWS DESK

Microsoft thanks Positive Technologies expert for helping to fix vulnerability in 17 operating systems

PR News Desk 14/07/2025

A vulnerability affecting several Windows operating systems has been resolved thanks to Marat Gayanov, an expert from the Positive Technologies Expert Security Center (PT ESC). The flaw could have allowed attackers to disable targeted devices. The vendor was notified of the threat in line with

NEWS DESK

Positive Technologies helps resolve zero-day vulnerability in Windows

PR News Desk 09/07/2025

Sergey Tarasov, Specialist at the Positive Technologies Expert Security Center, discovered a high-severity vulnerability affecting 37 desktop and server Windows operating systems,[1] including Windows 11, Windows 10, Server 2025, Server 2022, and Server 2019 of various versions and architectures. The flaw in the NTFS[2] file system driver could have led to privilege

NEWS DESK

Apple thanks Positive Technologies for discovering a vulnerability in its Shortcuts app

PR News Desk 23/06/2025

PT SWARM expert Egor Filatov found a critical vulnerability in Shortcuts, a built-in macOS app that streamlines device management by automating repetitive user actions. If successfully exploited, the security flaw could allow an attacker to gain full control over the device, including the ability to read, edit, and delete any data. If the compromised device happens

NEWS DESK

Positive Technologies identifies key cyberthreats for financial companies in 2025–2026

PR News Desk 17/06/2025

Positive Technologies has outlined[1] the major cyberthreats that the financial sector may face in the coming years. These include ransomware attacks, malicious use of QR codes, exploitation of API[2] vulnerabilities, DDoS campaigns, and attacks targeting suppliers and partners. These conclusions are based on the company’s analysis of security incidents and publicly

NEWS DESK

Positive Technologies begins accepting applications for the Positive Hack Camp

PR News Desk 28/05/2025

Positive Technologies announced the dates for the Positive Hack Camp, an international cybersecurity educational program for students and young cybersecurity enthusiasts at the Positive Hack Days cyberfestival. The camp will run from July 26 to August 10 in Moscow. Positive Hack Camp combines intensive training in ethical hacking, real-world practical exercises, and

NEWS DESK

Positive Technologies: AI can be applied in 55% of cybersecurity countermeasures

PR News Desk 14/05/2025

Positive Technologies conducted a study on the key applications of artificial intelligence in cybersecurity.[1] According to the report, AI can be utilized in more than half of the cybersecurity countermeasures presented in the MITRE D3FEND[2] matrix. As many as 28% of countermeasures already use AI assistance, and another 27% will soon be covered by AI-enabled […]

NEWS DESK

Positive Technologies: 80% of cyberattacks in the Middle East result in confidential data breaches

PR News Desk 07/05/2025

Positive Technologies, a leader in result-driven cybersecurity, has conducted a study on cyberthreats facing countries in the Middle East. The study examines the impact of digital transformation, the rise of organized cybercrime, and the dynamics of the underground market in the region. One in three successful cyberattacks in the Middle East was carried out by […]

NEWS DESK

Positive Technologies researcher discovers a new exploitation vector for previously known vulnerabilities in Intel processors

PR News Desk 03/04/2025

PT SWARM expert Mark Ermolov discovered a new exploitation vector for the vulnerabilities CVE-2017-5705, CVE-2017-5706, CVE-2017-5707, CVE-2019-0090, and CVE-2021-0146, which Intel has already fixed. Previously, these issues only enabled partial compromise, but this new method can lead to a complete security breach of affected platforms. The newly discovered approach to

NEWS DESK

Positive Technologies helps fix a vulnerability in Veeam Service Provider Console

PR News Desk 25/03/2025

Backup solutions vendor Veeam Software eliminated a vulnerability in Veeam Service Provider Console, a management platform used by backup and disaster recovery service providers. The security flaw CVE-2024-45206 (BDU:2024-1170) was discovered by PT SWARM expert Nikita Petrov. The vendor was notified of the threat in line with the responsible disclosure policy and has

NEWS DESK

D-Link recommends replacing routers affected by the vulnerability discovered by Positive Technologies

PR News Desk 19/03/2025

Vladimir Razov, an expert from the PT SWARM team, has discovered a vulnerability in several models of D-Link routers. According to Mordor Intelligence, D-Link is one of the top three Wi-Fi router manufacturers in the world. The vendor has been notified of the threat in line with the responsible disclosure policy and recommends that users […]

NEWS DESK

Positive Hack Talks in Cairo: Positive Technologies’ international meetups continue

PR News Desk 24/02/2025

Positive Technologies, an industry leader in result-driven cybersecurity, to host an open event for cybersecurity professionals in Cairo on 26th February. This event, will bring together cybersecurity professionals, students, and aspiring researchers, both Russian and local experts in an important in-person interaction to share their knowledge and expertise. Egypt is a

NEWS DESK

Positive Technologies specialist helps fix a critical vulnerability in MyQ Print Server

PR News Desk 30/01/2025

PT SWARM expert Arseniy Sharoglazov identified the CVE-2024-28059 (BDU:2024-01648) vulnerability in MyQ Print Server, a printing management solution. MyQ Print Server is installed on Windows servers of an organization to give a single access interface for controlling printers and scanners from different vendors. MyQ solutions are used in 140 countries around the world. The

NEWS DESK

Positive Technologies researcher discovered five dangerous vulnerabilities in Mitsubishi Electric programmable controllers

News Desk 27/05/2024

Positive Technologies announced that they discoveried five vulnerabilities in Mitsubishi Electric’s MELSEC System Q and MELSEC System L series PLC processor modules. These modules are used in the chemical industry, semiconductor production, building automation, and other industries. Mitsubishi Electric is one of the top three largest global manufacturers of industrial

NEWS DESK

Positive Technologies Launches Corporate Email Security Service PT Knockin

News Desk 02/05/2024

Positive Technologies is planning to open its own corporate email security tool PT Knockin to general public access. The company has been assessing the security of its technologies and constantly testing their effectiveness with its own proprietary tools such as PT Knockin. Now its exclusive expertise can be leveraged by external users.  PT Knockin, a […]

NEWS DESK

Positive Technologies: Cyberattackers targeting telecommunications

PR News Desk 27/03/2024

Positive Technologies has conducted a comprehensive research into the activities of the APT groups[1] targeting organizations in the Middle East[2]. The experts say that 88% of the groups under review were attacking Saudi Arabia, and the five most-attacked sectors were government agencies, manufacturing, telecommunications, the military-industrial complex, and energy. To

NEWS DESK

Positive Technologies: government agencies and the defense industry are favorite targets of phishing attacks

PR News Desk 20/02/2024

Positive Technologies experts analyzed phishing attacks against organizations in 2022–2023. Most often, in phishing messages, criminals pose as contractors. The phishing-as-a-service model has become common practice. Experts predict an increase in the role of AI in both conducting and preventing phishing attacks. The main objectives of phishing attacks are data theft (85%)

NEWS DESK

World’s largest bug bounty: Positive Technologies offers bug hunters

PR News Desk 13/02/2024

Positive Technologies is constantly refining its approach to result-driven cybersecurity[1]: as part of the bug bounty program Positive Dream Hunting, security researchers from around the world can attempt to trigger two non-tolerable events[2]. The first person who can inject malicious code into the company’s products or steal money from its accounts will be