VB Blog

VB2019 paper: Fantastic Information and Where to Find it: A guidebook to open-source OT reconnaissance

Posted by Martijn Grooten on Nov 22, 2019

A VB2019 paper by FireEye researcher Daniel Kapellmann Zafra explained how open source intelligence (OSINT) can be used to learn crucial details of the inner workings of many a system. Today we publish Daniel's paper and the recording of his presentation.

Posted by Martijn Grooten on Nov 21, 2019

Though active for not much longer than a year, GandCrab had been one of the most successful ransomware operations. In a paper presented at VB2019 in London, McAfee researchers John Fokker and Alexandre Mundo looked at the malware code, its evolution and the affiliate scheme behind it. Today we publish both their paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 18, 2019

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video of their presentation.

Posted by Martijn Grooten on Nov 18, 2019

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

Posted by Martijn Grooten on Nov 7, 2019

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 6, 2019

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Posted by Martijn Grooten on Nov 5, 2019

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

Posted by Martijn Grooten on Nov 4, 2019

Having returned from a summer hiatus, Emotet is back targeting inboxes and, as seen in the VBSpam test lab, doing a better job than most other malicious campaigns at bypassing email security products.

Posted by Martijn Grooten on Nov 1, 2019

Those working in the field of infosec are often faced with ethical dilemmas that are impossible to avoid. Today, we publish a VB2019 paper by Kaspersky researcher Ivan Kwiatkowski looking at ethics in infosec as well as the recording of Ivan's presentation.

Posted by Martijn Grooten on Oct 31, 2019

Malware used in domestic abuse situations is a growing threat, and the standard way for anti-virus products to handle such malware may not be good enough. But that doesn't mean there isn't an important role for anti-virus to play.

Previous1...7891011...215Next

Search blog

IEEE announces Anti-Malware Support Service

'Software taggant system' and 'clean file metadata exchange' discussed at previous VB conferences.
'Software taggant system' and 'clean file metadata exchange' discussed at previous VB conferences. Wouldn't it be nice if providers of software packers included a licence key in… https://www.virusbulletin.com/blog/2014/03/ieee-announces-anti-malware-support-service/

March

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2014/03/

March issue of VB published

The March issue of Virus Bulletin is now available for subscribers to download.
The March issue of Virus Bulletin is now available for subscribers to download. The March 2014 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2014/03/march-issue-vb-published/

'Cyberdanger' informs general audience of IT security

Eddy Willems' book is a pleasant read on an important subject.
Eddy Willems' book is a pleasant read on an important subject. Security expert Eddy Willems has written a book. The friendly Belgian, currently G Data's Security Evangelist, is a… https://www.virusbulletin.com/blog/2014/02/cyberdanger-informs-general-audience-it-security/

Researchers crack ransomware encryption

'Bitcrypt' authors confused their bytes and digits.
'Bitcrypt' authors confused their bytes and digits. Two French researchers have found a serious vulnerability in a new piece of ransomware that has allowed them to crack the keys… https://www.virusbulletin.com/blog/2014/02/researchers-crack-ransomware-encryption/

Windows Error Reporting used to discover new attacks

No excuse for sending error reports in cleartext.
No excuse for sending error reports in cleartext. All happy programs are the same. But each unhappy program crashes in its own way. In a report published yesterday, security firm… https://www.virusbulletin.com/blog/2014/02/windows-error-reporting-used-discover-new-attacks/

Tech support scammers won't give up

M3AAWG workshop to deal with fighting telephony abuse.
M3AAWG workshop to deal with fighting telephony abuse. For security researchers like myself, receiving a call from a tech support scammer is usually a good opportunity for a bit of… https://www.virusbulletin.com/blog/2014/02/tech-support-scammers-won-t-give/

At least 99.4% of spam blocked in recent Virus Bulletin test

All solutions on test blocked at least 99.4% of spam, but some struggled with false positive issues; survey also shows few products support DMARC.
All solutions on test blocked at least 99.4% of spam, but some struggled with false positive issues; survey also shows few products support DMARC. The results of the most recent… https://www.virusbulletin.com/blog/2014/02/least-99-4-spam-blocked-recent-test/

February

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2014/02/

February issue of VB published

The February issue of Virus Bulletin is now available for subscribers to download.
The February issue of Virus Bulletin is now available for subscribers to download. The February 2014 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2014/02/february-issue-vb-published/

Macro viruses make a return in targeted attacks

Macros disabled in modern versions of Office, but enabled within many organisations.
Macros disabled in modern versions of Office, but enabled within many organisations. A report by the National Cyber Security Center (NCSC, the Dutch CERT) points to a resurgence of… https://www.virusbulletin.com/blog/2014/01/macro-viruses-make-return-targeted-attacks/

VirusTotal support integrated into new version of Process Explorer

Sysadmins can check hashes of processes against file-checking service database.
Sysadmins can check hashes of processes against file-checking service database.Microsoft and Google are known for their fierce competition, but when it comes to security, the tech… https://www.virusbulletin.com/blog/2014/01/virustotal-support-integrated-new-version-process-explorer/

CSRF vulnerability in USB modems allows for infrastructure-less phishing

Credentials sent to attacker by built-in SMS functionality.
Credentials sent to attacker by built-in SMS functionality. Modems and routers aren't typically known for their security, and modems that allow one to connect to mobile broadband… https://www.virusbulletin.com/blog/2014/01/csrf-vulnerability-usb-modems-allows-infrastructure-less-phishing/

Browser-based ransomware uses scare tactics to extort money

Unsophisticated scam shows the high level of commoditization of today's cybercrime.
Unsophisticated scam shows the high level of commoditization of today's cybercrime. A case of browser-based ransomware, that is currently using social engineering tactics in an… https://www.virusbulletin.com/blog/2014/01/browser-based-ransomware-uses-scare-tactics-extort-money/

Is your fridge sending spam?

It's possible that smart devices are sending spam, but it wouldn't make any difference.
It's possible that smart devices are sending spam, but it wouldn't make any difference. Last week, security-as-a-service firm Proofpoint published a press release on a recent spam… https://www.virusbulletin.com/blog/2014/01/your-fridge-sending-spam/

2014

Latest news from the anti-virus industry provided by independent anti-virus advisors, Virus Bulletin
NewsConference review: Botconf 2014Second edition of 'botnet fighting conference' another great success. 22 December 2014Call for Papers: VB2015 PragueVB seeks submissions for the… https://www.virusbulletin.com/blog/2014/

January

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2014/01/

January issue of VB published

The January issue of Virus Bulletin is now available for subscribers to download.
The January issue of Virus Bulletin is now available for subscribers to download. The January 2014 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2014/01/january-issue-vb-published/

Botconf - the 'first botnet fighting conference'

Tools, ideas and research presented in Nantes.
Tools, ideas and research presented in Nantes. There are far too many security conferences each year for my agenda, budget and brain to handle, and thus I need to choose carefully… https://www.virusbulletin.com/blog/2013/12/botconf-first-botnet-fighting-conference/

VB2014: more of the same, plus something a little different

Hackers, network security researchers encouraged to submit abstracts for the conference.
Hackers, network security researchers encouraged to submit abstracts for the conference. The issuing of the call for papers for a VB conference is always an important event for us,… https://www.virusbulletin.com/blog/2013/12/more-same-plus-something-little-different/

« Previous 1...4041424344...120 Next »