VB Blog

VB2019 paper: Fantastic Information and Where to Find it: A guidebook to open-source OT reconnaissance

Posted by   Martijn Grooten on   Nov 22, 2019

A VB2019 paper by FireEye researcher Daniel Kapellmann Zafra explained how open source intelligence (OSINT) can be used to learn crucial details of the inner workings of many a system. Today we publish Daniel's paper and the recording of his presentation.

Read more  

VB2019 paper: Different ways to cook a crab: GandCrab Ransomware-as-a-Service (RaaS) analysed in depth

Posted by   Martijn Grooten on   Nov 21, 2019

Though active for not much longer than a year, GandCrab had been one of the most successful ransomware operations. In a paper presented at VB2019 in London, McAfee researchers John Fokker and Alexandre Mundo looked at the malware code, its evolution and the affiliate scheme behind it. Today we publish both their paper and the recording of their presentation.

Read more  

VB2019 paper: Domestic Kitten: an Iranian surveillance program

Posted by   Martijn Grooten on   Nov 18, 2019

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video of their presentation.

Read more  

VB2019 video: Discretion in APT: recent APT attack on crypto exchange employees

Posted by   Martijn Grooten on   Nov 18, 2019

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

Read more  

VB2019 paper: DNS on fire

Posted by   Martijn Grooten on   Nov 7, 2019

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

Read more  

German Dridex spam campaign is unfashionably large

Posted by   Martijn Grooten on   Nov 6, 2019

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Read more  

Paper: Dexofuzzy: Android malware similarity clustering method using opcode sequence

Posted by   Martijn Grooten on   Nov 5, 2019

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

Read more  

Emotet continues to bypass many email security products

Posted by   Martijn Grooten on   Nov 4, 2019

Having returned from a summer hiatus, Emotet is back targeting inboxes and, as seen in the VBSpam test lab, doing a better job than most other malicious campaigns at bypassing email security products.

Read more  

VB2019 paper: We need to talk - opening a discussion about ethics in infosec

Posted by   Martijn Grooten on   Nov 1, 2019

Those working in the field of infosec are often faced with ethical dilemmas that are impossible to avoid. Today, we publish a VB2019 paper by Kaspersky researcher Ivan Kwiatkowski looking at ethics in infosec as well as the recording of Ivan's presentation.

Read more  

Stalkerware poses particular challenges to anti-virus products

Posted by   Martijn Grooten on   Oct 31, 2019

Malware used in domestic abuse situations is a growing threat, and the standard way for anti-virus products to handle such malware may not be good enough. But that doesn't mean there isn't an important role for anti-virus to play.

Read more  
Previous1...7891011...215Next

Search blog

You are your own threat model

For most people, the biggest security threat is that of themselves doing something they shouldn't do.
For most people, the biggest security threat is that of themselves doing something they shouldn't do. Last week, Microsoft wrote about the return of macro malware where, now that… https://www.virusbulletin.com/blog/2015/05/you-are-your-own-threat-model/

May

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2015/05/

Report: six anti-virus solutions pass annual Linux test

Clean sweep of passes in VB100 test on Red Hat Enterprise Linux.
Clean sweep of passes in VB100 test on Red Hat Enterprise Linux. 2015 will yet again not be the 'Year of the Linux Desktop', yet behind the scenes' Linux plays an important role in… https://www.virusbulletin.com/blog/2015/05/report-six-anti-virus-solutions-pass-annual-linux-test/

Throwback Thursday: Regina v Christopher Pile: The Inside Story & Off with his Head!

This Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to 1996 to look at events surrounding the issuing of the UK's first custodial sentence for writing and distributing computer viruses.
This Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to 1996 to look at events surrounding the issuing of the UK's first… https://www.virusbulletin.com/blog/2015/04/throwback-thursday-regina-v-christopher-pile-inside-story-amp-his-head/

POODLE is the brown M&Ms of security

Just because it won't be exploited, doesn't mean you shouldn't patch it.
Just because it won't be exploited, doesn't mean you shouldn't patch it. There is a famous story about the rock band Van Halen whose lists of requirements when performing a show… https://www.virusbulletin.com/blog/2015/04/poodle-brown-m-amp-ms-security/

Report: 15 solutions achieve VBSpam award

Test process also uncovers job spam illustrative of trend.
Test process also uncovers job spam illustrative of trend. Last week, we published our 36th comparative anti-spam test. All but one of the 16 participating full solutions achieved… https://www.virusbulletin.com/blog/2015/04/report-15-solutions-achieve-vbspam-award/

Throwback Thursday: Through the Administrator's Eye

This Throwback Thursday, VB heads back to 1997 with 'Through the Administrator's Eye'.
This Throwback Thursday, VB heads back to 1997 with 'Through the Administrator's Eye'. Over the last couple of years, the 'Throwback Thursday' trend has taken the Internet by… https://www.virusbulletin.com/blog/2015/04/throwback-thursday-through-administrator-s-eye/

VB2015 offer for new security companies

Write an article for the Bulletin, get a half-price ticket for the conference.
Write an article for the Bulletin, get a half-price ticket for the conference. Things are going well for the security industry. That may, of course, be because of the poor state of… https://www.virusbulletin.com/blog/2015/04/offer-new-security-companies/

Registration for VB2015 has opened

Early bird discounts available for registrations made before 30 June.
Early bird discounts available for registrations made before 30 June. Today, we have opened registration for VB2015, the 25th Virus Bulletin International Conference. 'VB' is… https://www.virusbulletin.com/blog/2015/04/registration-has-opened/

Ross Anderson awarded BCS Lovelace Medal

Cambridge professor to deliver VB2015 keynote.
Cambridge professor to deliver VB2015 keynote. Yesterday, the British Computer Society (BCS) announced that the 2015 Lovelace Medal has been awarded to Prof. Ross Anderson. Named… https://www.virusbulletin.com/blog/2015/04/ross-anderson-awarded-bcs-lovelace-medal/

Throwback Thursday: The Unbearable Lightness of Testing

VB gets in on the Throwback Thursday act, delving into the archives.
VB gets in on the Throwback Thursday act, delving into the archives. Over the last couple of years, the 'Throwback Thursday' trend has taken the Internet by storm, with social… https://www.virusbulletin.com/blog/2015/04/throwback-thursday-unbearable-lightness-testing/

Does it matter if my banking password is 'Prague'?

Users do choose weak passwords, but they aren't as big a problem as we think.
Users do choose weak passwords, but they aren't as big a problem as we think. This week, I spent a few days at the Cyber Security Summit Financial Services conference in Prague,… https://www.virusbulletin.com/blog/2015/04/does-it-matter-if-my-banking-password-prague/

Google 'suspends' CNNIC from Chrome's certificate store

Chinese certificate authority told to re-apply.
Chinese certificate authority told to re-apply. When a web client, such as a browser, attempts to make an HTTPS connection, it needs to know that no man-in-the-middle attack is… https://www.virusbulletin.com/blog/2015/04/google-suspends-cnnic-chrome-s-certificate-store/

Volatile Cedar campaign - cyber espionage isn't just for large nation states

Details of malware to be discussed at VB2015.
Details of malware to be discussed at VB2015. Researchers at Check Point have revealed details of a cyber-espionage campaign, dubbed 'Volatile Cedar', that has been active since at… https://www.virusbulletin.com/blog/2015/04/volatile-cedar-campaign-cyber-espionage-isn-t-just-large-nation-states/

VB2014 paper: Swipe away, we're watching you

Hong Kei Chan and Liang Huang describe the various aspects and the evolution of point-of-sale malware.
Hong Kei Chan and Liang Huang describe the various aspects and the evolution of point-of-sale malware.Since the close of the VB2014 conference in Seattle in October, we have been… https://www.virusbulletin.com/blog/2015/04/paper-swipe-away-we-re-watching-you/

Virus Bulletin announces two VB2015 keynotes

Ross Anderson and Costin Raiu to deliver keynote addresses at 25th Virus Bulletin conference.
Ross Anderson and Costin Raiu to deliver keynote addresses at 25th Virus Bulletin conference. Two days after we published the programme for VB2015, we are excited to announce that… https://www.virusbulletin.com/blog/2015/04/announces-two-keynotes/

April

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2015/04/

VB2015 conference programme announced

From drones to elephants: an exciting range of topics will be covered in Prague.
From drones to elephants: an exciting range of topics will be covered in Prague. In six months' time, security researchers from around the world will gather in Prague for the 25th… https://www.virusbulletin.com/blog/2015/03/conference-programme-announced/

Paper: a timeline of mobile botnets

Ruchna Nigam provides an overview of more than 60 mobile malware families.
Ruchna Nigam provides an overview of more than 60 mobile malware families. The rise of mobile malware is still a relatively recent thing, with the first actual mobile botnets not… https://www.virusbulletin.com/blog/2015/03/paper-timeline-mobile-botnets/

Paper: Dylib hijacking on OS X

Patrick Wardle shows how OS X is also vulnerable to once common Windows attacks.
Patrick Wardle shows how OS X is also vulnerable to once common Windows attacks. A few years ago, DLL hijacking on Windows was really hot, despite the fact that the concept had… https://www.virusbulletin.com/blog/2015/03/paper-dylib-hijacking-os-x/

« Previous 1...3132333435...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.