VB Blog

Paper: New Keylogger on the Block

Posted by   Martijn Grooten on   Jul 5, 2016

In a new paper published by Virus Bulletin, Sophos researcher Gabor Szappanos takes a look at the KeyBase keylogger, sold as a commercial product and popular among cybercriminals who use it in Office exploit kits.

Read more  

BSides Denver to take place the day after VB2016

Posted by   Martijn Grooten on   Jun 28, 2016

VB2016, the 26th International Virus Bulletin conference, is an excellent reason to go to Denver, Colorado in the first week of October. But there is another reason to come to Denver: BSides Denver, which will take place the day after VB2016, on Saturday 8 October 2016.

Read more  

VB2015 paper: DDoS Trojan: A Malicious Concept that Conquered the ELF Format

Posted by   Virus Bulletin on   Jun 13, 2016

In their VB2015 paper, Peter Kálnai and Jaromír Hořejší look at the current state of DDoS trojans forming covert botnets on unsuspecting systems. The paper provides a technical analysis of the most important malware families, focusing on infection methods, dynamic behaviour, C&C communication, obfuscation techniques, advanced methods of persistence and stealth, and elimination of rivals.

Read more  

Throwback Thursday: Hyppönen, that Data Fellow / Finnish Sprayer

Posted by   Helen Martin on   Jun 2, 2016

This week, well known and universally respected industry guru Mikko Hyppönen celebrates his 25th anniversary of working at F-Secure (formerly known as Data Fellows). VB takes a look back in the archives at two articles published in 1994: an "insight" into the life and work of the then rising star of the anti-virus world, and a virus analysis penned by the man himself.

Read more  

VB2015 paper: Economic Sanctions on Malware

Posted by   Helen Martin on   Jun 1, 2016

Financial pressure can be a proactive and potentially very effective tool in making our computer ecosystems safer. By cleverly employing various trust metrics and technologies such as digital signing, watermarking, and public-key infrastructure in strategically selected places, we can encourage good behaviours and punish bad ones. In his VB2015 paper, Igor Muttik analyses and gives examples of technologies (certificates, credentials, etc.) to de-incentivize bad behaviours in several ecosystems (Windows, Android, iOS).

Read more  

Virus Bulletin's job site for recruiters and job seekers

Posted by   Martijn Grooten on   May 26, 2016

Virus Bulletin has relaunched its security job vacancy service and added a new section, in which job seekers can advertise their skills and experience.

Read more  

Throwback Thursday: One_Half: The Lieutenant Commander?

Posted by   Helen Martin on   May 26, 2016

In October 1994, a new multi-partite virus appeared, using some of the techniques developed by the Dark Avenger in Commander_Bomber. As if this were not enough, the One_Half virus could also encrypt vital parts of the fixed disk. Eugene Kaspersky provided a detailed analysis.

Read more  

Advertisements on Blogspot sites lead to support scam

Posted by   Martijn Grooten on   May 9, 2016

Support scam pop-ups presented through malicious advertisements show that, next to vulnerable end points, gullible users remain an easy source of money for online criminals.

Read more  

To make Tor work better on the web, we need to be honest about it

Posted by   Martijn Grooten on   May 6, 2016

Many websites put barriers in front of visitors who use the Tor network. If we want to make the web more accessible through Tor, we need to be honest about why this is done, rather than cry wolf about a dislike for privacy, Martijn Grooten says.

Read more  

Paper: How It Works: Steganography Hides Malware in Image Files

Posted by   Martijn Grooten on   Apr 28, 2016

A new paper by CYREN researcher Lordian Mosuela takes a close look at Gatak, or Stegoloader, a piece of malware that was discovered last year and that is controlled via malicious code embedded in a PNG image, a technique known as steganography.

Read more  

Search blog

McAfee acquires website trust mark firm

ScanAlert certification system bought for $51 million.
ScanAlert certification system bought for $51 million.McAfee has bought ScanAlert, the firm behind the 'Hacker Safe' trust mark logo, carried by some 75,000 websites to indicate… https://www.virusbulletin.com/blog/2007/10/mcafee-acquires-website-trust-mark-firm/

McAfee invests in encryption firm

SafeBoot acquired for $350 million.
SafeBoot acquired for $350 million.McAfee has announced the acquisition of encryption and device control specialist SafeBoot, which produces a range of security products for PCs… https://www.virusbulletin.com/blog/2007/10/mcafee-invests-encryption-firm/

US users overestimating PC security

Survey finds people are less protected than they think.
Survey finds people are less protected than they think. A joint study carried out by McAfee and the National Cyber Security Alliance (NCSA) has found that many US consumers wrongly… https://www.virusbulletin.com/blog/2007/10/us-users-overestimating-pc-security/

AOL quietly drops free-to-all AV offering

Gratis software now for members only, old users may be at risk.
Gratis software now for members only, old users may be at risk. A month ago we reported on AOL's switch of providers for its free anti-virus software offering, from the… https://www.virusbulletin.com/blog/2007/09/aol-quietly-drops-free-all-av-offering/

Webcam zero-day in Yahoo! Messenger

Video chat invites pose vulnerability danger.
Video chat invites pose vulnerability danger. A zero-day vulnerability has been reported in the webcam module of Yahoo! Messenger, allowing attackers remote access to systems open… https://www.virusbulletin.com/blog/2007/08/webcam-zero-day-yahoo-messenger/

AOL drops Kaspersky for McAfee

Web giant changes provider of free security software for members.
Web giant changes provider of free security software for members. Giant ISP and web services provider AOL is offering a free, special edition version of McAfee security software to… https://www.virusbulletin.com/blog/2007/08/aol-drops-kaspersky-mcafee/

Online malware dangers analysed

Google, McAfee release webserver, search result figures.
Google, McAfee release webserver, search result figures. Two reports out this week have revealed some interesting statistics on the security dangers involved in browsing the… https://www.virusbulletin.com/blog/2007/06/online-malware-dangers-analysed/

Latest flaws affect AV giants

Symantec, McAfee and CA all patch vulnerabilities.
Symantec, McAfee and CA all patch vulnerabilities. Three of the biggest names in the security sector, McAfee, Symantec and CA, have all revealed details of flaws in their software… https://www.virusbulletin.com/blog/2007/05/latest-flaws-affect-av-giants/

« Previous 12 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.