VB Blog

VB2019 paper: Fantastic Information and Where to Find it: A guidebook to open-source OT reconnaissance

Posted by   Martijn Grooten on   Nov 22, 2019

A VB2019 paper by FireEye researcher Daniel Kapellmann Zafra explained how open source intelligence (OSINT) can be used to learn crucial details of the inner workings of many a system. Today we publish Daniel's paper and the recording of his presentation.

Read more  

VB2019 paper: Different ways to cook a crab: GandCrab Ransomware-as-a-Service (RaaS) analysed in depth

Posted by   Martijn Grooten on   Nov 21, 2019

Though active for not much longer than a year, GandCrab had been one of the most successful ransomware operations. In a paper presented at VB2019 in London, McAfee researchers John Fokker and Alexandre Mundo looked at the malware code, its evolution and the affiliate scheme behind it. Today we publish both their paper and the recording of their presentation.

Read more  

VB2019 paper: Domestic Kitten: an Iranian surveillance program

Posted by   Martijn Grooten on   Nov 18, 2019

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video of their presentation.

Read more  

VB2019 video: Discretion in APT: recent APT attack on crypto exchange employees

Posted by   Martijn Grooten on   Nov 18, 2019

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

Read more  

VB2019 paper: DNS on fire

Posted by   Martijn Grooten on   Nov 7, 2019

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

Read more  

German Dridex spam campaign is unfashionably large

Posted by   Martijn Grooten on   Nov 6, 2019

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Read more  

Paper: Dexofuzzy: Android malware similarity clustering method using opcode sequence

Posted by   Martijn Grooten on   Nov 5, 2019

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

Read more  

Emotet continues to bypass many email security products

Posted by   Martijn Grooten on   Nov 4, 2019

Having returned from a summer hiatus, Emotet is back targeting inboxes and, as seen in the VBSpam test lab, doing a better job than most other malicious campaigns at bypassing email security products.

Read more  

VB2019 paper: We need to talk - opening a discussion about ethics in infosec

Posted by   Martijn Grooten on   Nov 1, 2019

Those working in the field of infosec are often faced with ethical dilemmas that are impossible to avoid. Today, we publish a VB2019 paper by Kaspersky researcher Ivan Kwiatkowski looking at ethics in infosec as well as the recording of Ivan's presentation.

Read more  

Stalkerware poses particular challenges to anti-virus products

Posted by   Martijn Grooten on   Oct 31, 2019

Malware used in domestic abuse situations is a growing threat, and the standard way for anti-virus products to handle such malware may not be good enough. But that doesn't mean there isn't an important role for anti-virus to play.

Read more  
Previous1...7891011...215Next

Search blog

Steganoprague: a VB2015 competition & puzzle

Use your obfuscation and deobfuscation skills to win a prize during the VB2015 conference!
Use your obfuscation and deobfuscation skills to win a prize during the VB2015 conference! "It is time for defenders to go on the offence," wrote Andreas Lindh in Virus Bulletin… https://www.virusbulletin.com/blog/2015/06/steganoprague-competition-amp-puzzle/

Virus Bulletin announces 'Small Talks' for VB2015

Smaller, more informal format ideal for discussion and debate.
Smaller, more informal format ideal for discussion and debate. When, a few months ago, we announced the programme for VB2015, we promised 'a number of added extras'. We have… https://www.virusbulletin.com/blog/2015/06/announces-small-talks/

Virus Bulletin announces student tickets for VB2015

87% discount for students and the option to give a lightning talk.
87% discount for students and the option to give a lightning talk. A few weeks ago, we opened registration for VB2015, which will take place in Prague from 30 September to 2… https://www.virusbulletin.com/blog/2015/05/announces-student-tickets/

VB2015 offer for new security companies

Write an article for the Bulletin, get a half-price ticket for the conference.
Write an article for the Bulletin, get a half-price ticket for the conference. Things are going well for the security industry. That may, of course, be because of the poor state of… https://www.virusbulletin.com/blog/2015/04/offer-new-security-companies/

Registration for VB2015 has opened

Early bird discounts available for registrations made before 30 June.
Early bird discounts available for registrations made before 30 June. Today, we have opened registration for VB2015, the 25th Virus Bulletin International Conference. 'VB' is… https://www.virusbulletin.com/blog/2015/04/registration-has-opened/

VB2014 paper: Swipe away, we're watching you

Hong Kei Chan and Liang Huang describe the various aspects and the evolution of point-of-sale malware.
Hong Kei Chan and Liang Huang describe the various aspects and the evolution of point-of-sale malware.Since the close of the VB2014 conference in Seattle in October, we have been… https://www.virusbulletin.com/blog/2015/04/paper-swipe-away-we-re-watching-you/

Virus Bulletin announces two VB2015 keynotes

Ross Anderson and Costin Raiu to deliver keynote addresses at 25th Virus Bulletin conference.
Ross Anderson and Costin Raiu to deliver keynote addresses at 25th Virus Bulletin conference. Two days after we published the programme for VB2015, we are excited to announce that… https://www.virusbulletin.com/blog/2015/04/announces-two-keynotes/

VB2015 conference programme announced

From drones to elephants: an exciting range of topics will be covered in Prague.
From drones to elephants: an exciting range of topics will be covered in Prague. In six months' time, security researchers from around the world will gather in Prague for the 25th… https://www.virusbulletin.com/blog/2015/03/conference-programme-announced/

Virus Bulletin seeks hackers, network researchers for VB2015

One week left to submit an abstract for the 25th Virus Bulletin conference.
One week left to submit an abstract for the 25th Virus Bulletin conference. A few weeks ago, I made a short visit to the Clarion Congress Hotel in Prague, where VB2015 will take… https://www.virusbulletin.com/blog/2015/03/seeks-hackers-network-researchers/

VB2014 paper: P0wned by a barcode: stealing money from offline users

Fabio Assolini explains how cybercriminals are targeting boletos.
Fabio Assolini explains how cybercriminals are targeting boletos.Since the close of the VB2014 conference in Seattle in October, we have been sharing VB2014 conference papers as… https://www.virusbulletin.com/blog/2015/02/paper-p0wned-barcode-stealing-money-offline-users/

VB2014 paper: Ubiquitous Flash, ubiquitous exploits and ubiquitous mitigation

Chun Feng and Elia Florio analyse two Flash Player vulnerabilities and an IE one where Flash provides a helping hand.
Chun Feng and Elia Florio analyse two Flash Player vulnerabilities and an IE one where Flash provides a helping hand.Since the close of the VB2014 conference in Seattle in October,… https://www.virusbulletin.com/blog/2015/01/paper-ubiquitous-flash-ubiquitous-exploits-and-ubiquitous-mitigation/

Frequently asked questions about VB2015 conference submissions

No, it doesn't have to be about malware and no, it doesn't have to be deeply technical either!
No, it doesn't have to be about malware and no, it doesn't have to be deeply technical either! Last month, we opened the call for papers for VB2015, the 25th Virus Bulletin… https://www.virusbulletin.com/blog/2015/01/frequently-asked-questions-about-conference-submissions/

VB2014 paper: OPSEC for security researchers

Vicente Diaz teaches researchers the basics of OPSEC.
Vicente Diaz teaches researchers the basics of OPSEC.Since the close of the VB2014 conference in Seattle in October, we have been sharing VB2014 conference papers as well as video… https://www.virusbulletin.com/blog/2015/01/paper-opsec-security-researchers/

VB2014 paper: Duping the machine - malware strategies, post sandbox detection

James Wyke looks at malware that takes extra steps to frustrate researchers.
James Wyke looks at malware that takes extra steps to frustrate researchers.Since the close of the VB2014 conference in Seattle in October, we have been sharing VB2014 conference… https://www.virusbulletin.com/blog/2015/01/paper-duping-machine-malware-strategies-post-sandbox-detection/

VB2014 Paper: Attack surface analysis of Tizen devices

Irfan Asrar looks at the security of the operating system used in many IoT devices.
Irfan Asrar looks at the security of the operating system used in many IoT devices.Since the close of the VB2014 conference in Seattle in October, we have been sharing VB2014… https://www.virusbulletin.com/blog/2015/01/paper-attack-surface-analysis-tizen-devices/

Conference review: Botconf 2014

Second edition of 'botnet fighting conference' another great success.
Second edition of 'botnet fighting conference' another great success. I had been looking forward to the second edition of the Botconf conference ever since I came back from the… https://www.virusbulletin.com/blog/2014/12/conference-review-botconf-2014/

Call for Papers: VB2015 Prague

VB seeks submissions for the 25th Virus Bulletin Conference.
VB seeks submissions for the 25th Virus Bulletin Conference.Virus Bulletin is seeking submissions from those wishing to present papers at VB2015, which will take place 30 September… https://www.virusbulletin.com/blog/2014/12/call-papers-prague/

Virus Bulletin announces platinum sponsors for VB2015

More sponsorship opportunities available.
More sponsorship opportunities available. While the opening of VB2015 in Prague is still more than nine months away, we have already started with the preparations for what will be… https://www.virusbulletin.com/blog/2014/12/announces-platinum-sponsors/

Botconf 2014 preview

Many VB authors and presenters to speak at second botnet-fighting conference.
Many VB authors and presenters to speak at second botnet-fighting conference. Last year, I attended the first edition of 'Botconf' in the French city of Nantes. I really enjoyed… https://www.virusbulletin.com/blog/2014/11/botconf-2014-preview/

VB2014 paper: Optimized mal-ops. Hack the ad network like a boss

Why buying ad space makes perfect sense for those wanting to spread malware.
Why buying ad space makes perfect sense for those wanting to spread malware.Over the next few months, we will be sharing VB2014 conference papers as well as video recordings of the… https://www.virusbulletin.com/blog/2014/11/paper-optimized-mal-ops-hack-ad-network-boss/

« Previous 1...10111213141516 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.