VB Blog

DMARC: an imperfect solution that can make a big difference

Posted by Martijn Grooten on Jul 24, 2017

US Senator Ron Wyden has asked the Department of Homeland Security to implement DMARC. Martijn Grooten looks at what difference this could make for phishing attacks impersonating the US federal governent.

Posted by Martijn Grooten on Jul 20, 2017

Unsurprisingly given today's threat landscape, the VB2017 programme contains several talks on various advanced persistent threats - but also a talk on what may be the polar opposite of such threats: an inept persistent threat.

Posted by Martijn Grooten on Jul 18, 2017

Password security advice focuses too much on password strength and too little on avoiding password reuse, Martijn Grooten argues.

Posted by Martijn Grooten on Jul 17, 2017

Though the location will remain a secret for a few more months, we are pleased to announce the dates for VB2018, the 28th Virus Bulletin International Conference.

Posted by Martijn Grooten on Jul 10, 2017

The second edition of BSides Athens saw a great and varied programme presented in the Greek capital. VB's Martijn Grooten was pleased to attend.

Posted by Martijn Grooten on Jul 7, 2017

Spreading 'FUD' in the wake of cyber-attacks is never a good idea. But it's even worse when this might be one of the attackers' implicit goals.

Posted by Martijn Grooten on Jul 7, 2017

For the third year in a row, we have set aside a limited number of student tickets for the Virus Bulletin conference, to allow 'next-generation' security researchers to experience one of the most important gatherings of security researchers around the world.

Posted by Martijn Grooten on Jul 4, 2017

Virus Bulletin has opened nominations for the fourth annual Péter Szőr Award, for the best piece of technical security research published between 1 July 2016 and 30 June 2017.

Posted by Martijn Grooten on Jul 3, 2017

According to some researchers, there is some evidence linking the recent (Not)Petya attacks with the BlackEnergy group - which became infamous for its targeted attacks against the Ukraine. At VB2016, ESET researchers Anton Cherepanov and Robert Lipovsky spoke about BlackEnergy, providing an overview of the group's attacks. Today, we publish their paper.

Posted by Martijn Grooten on Jun 30, 2017

As WannaCry and (Not)Petya have shown, malware attacks can do a lot of damage. So is staying safe just a case of following good security advice?

Previous1...3334353637...215Next

Search blog

Scammers take advantage of Epsilon data breach

Trojan hidden as security tool for affected customers.
Trojan hidden as security tool for affected customers. Scammers are currently taking advantage of the data breach that affected email security provider Epsilon recently, by… https://www.virusbulletin.com/blog/2011/04/scammers-take-advantage-epsilon-data-breach/

First AV-Test certifications of 2011 published

22 products scored on multiple scales in quarterly test report.
22 products scored on multiple scales in quarterly test report. Testing organization AV-Test has published its latest round of anti-malware certification tests, with 22 products… https://www.virusbulletin.com/blog/2011/04/first-av-test-certifications-2011-published/

Department of Justice shuts down Coreflood botnet

'Stop' command sent from replaced command and control servers.
'Stop' command sent from replaced command and control servers. Earlier this week the US Department of Justice (DoJ) obtained an unprecedented temporary restraining order (TRO) that… https://www.virusbulletin.com/blog/2011/04/department-justice-shuts-down-coreflood-botnet/

Adobe releases emergency update for Flash Player

Zero-day exploit actively being abused.
Zero-day exploit actively being abused.Adobe has announced it will release an update for its Flash Player on Friday 15 April, fixing a vulnerability that is currently being… https://www.virusbulletin.com/blog/2011/04/adobe-releases-emergency-update-flash-player/

Ransom trojan demands Windows re-activation

Criminals make money through calls to supposedly free phone number.
Criminals make money through calls to supposedly free phone number. A new piece of ransomware has been discovered that shows the PC user a blue screen and asks them to re-activate… https://www.virusbulletin.com/blog/2011/04/ransom-trojan-demands-windows-re-activation/

AV-Comparatives unveils latest on-demand results

20 products rated in large-scale detection tests.
20 products rated in large-scale detection tests. Testing organization AV-Comparatives has revealed the results of its latest on-demand test. Top-rated products include Trustport,… https://www.virusbulletin.com/blog/2011/04/av-comparatives-unveils-latest-demand-results/

Major email service provider suffers data breach

Financial institutions among affected customers.
Financial institutions among affected customers. Email service provider Epsilon, which carries out email marketing for many major companies, has admitted it has fallen victim to a… https://www.virusbulletin.com/blog/2011/04/major-email-service-provider-suffers-data-breach/

RSA gives insight into anatomy of attack on its systems

Publicly available information used to spear phish employees.
Publicly available information used to spear phish employees. Security company RSA has released some information about how hackers gained access to its systems, giving a good… https://www.virusbulletin.com/blog/2011/04/rsa-gives-insight-anatomy-attack-its-systems/

April

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2011/04/

April issue of VB published

The April issue of Virus Bulletin is now available for subscribers to download.
The April issue of Virus Bulletin is now available for subscribers to download. The April 2011 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2011/04/april-issue-vb-published/

Keylogger on Samsung laptops proves to be false alarm

AV product wrongly flags malware based on existence of directory.
AV product wrongly flags malware based on existence of directory. A number of security bloggers raised concern yesterday about the apparent presence of a keylogger on Samsung… https://www.virusbulletin.com/blog/2011/03/keylogger-samsung-laptops-proves-be-false-alarm/

South Korea proposes to make security software mandatory

Law enables government to search PCs of those who do not comply.
Law enables government to search PCs of those who do not comply. A bill, proposed by a number of South Korean MPs, would make the use of security software mandatory for computer… https://www.virusbulletin.com/blog/2011/03/south-korea-proposes-make-security-software-mandatory/

Rogue SSL certificates issued for popular websites

Certificates revoked, but browsers still need to be updated.
Certificates revoked, but browsers still need to be updated.Comodo, a major vendor of SSL certificates, has admitted to one of its affiliates' servers being hacked, leading to nine… https://www.virusbulletin.com/blog/2011/03/rogue-ssl-certificates-issued-popular-websites/

Cutwail botnet sent 1.7 trillion spam messages

Operators made several million through botnet.
Operators made several million through botnet. Researchers from The Last Line of Defense and universities in Bochum and Santa Barbara have shared some insight into the workings of… https://www.virusbulletin.com/blog/2011/03/cutwail-botnet-sent-1-7-trillion-spam-messages/

Spam levels take a nose dive as Rustock apparently taken down - update

Eerie silence from Rustock botnet. Microsoft reported to have co-ordinated take down.
Eerie silence from Rustock botnet. Microsoft reported to have co-ordinated take down. Spam levels have taken a nose dive over the last 24 hours - apparently as a result of a take… https://www.virusbulletin.com/blog/2011/03/spam-levels-take-nose-dive-rustock-apparently-taken-down-update/

Increase in use of mobile anti-malware protection

Poll shows smartphone users more likely to use anti-malware protection on their phones than three years ago.
Poll shows smartphone users more likely to use anti-malware protection on their phones than three years ago. In a poll of visitors to the VB website, 57% of smartphone users said… https://www.virusbulletin.com/blog/2011/03/increase-use-mobile-anti-malware-protection/

Taking Brain home

Short film features Mikko Hyppönen returning first PC virus to its birthplace.
Short film features Mikko Hyppönen returning first PC virus to its birthplace. Anti-malware vendor F-Secure released a short documentary film this week to mark the 25th anniversary… https://www.virusbulletin.com/blog/2011/03/taking-brain-home/

Tsunami response quick among cybercriminals

Miscreants releasing scams, phishing, scareware... within a matter of hours.
Miscreants releasing scams, phishing, scareware... within a matter of hours. As most of the world reels in shock at the devastation caused by this morning's massive earthquake in… https://www.virusbulletin.com/blog/2011/03/tsunami-response-quick-among-cybercriminals/

Cybercriminals frustrated with botnet trackers

Drastic measures discussed by users of online forum.
Drastic measures discussed by users of online forum. Russian cybercriminals are willing to go to great lengths to frustrate services that hinder botnets created with the ZeuS and… https://www.virusbulletin.com/blog/2011/03/cybercriminals-frustrated-botnet-trackers/

ENISA calls for revised botnet measurements

EU agency says current measures of botnet threat are misleading.
EU agency says current measures of botnet threat are misleading. European cyber security agency, ENISA (the European Network and Information Security Agency) has called for a… https://www.virusbulletin.com/blog/2011/03/enisa-calls-revised-botnet-measurements/

« Previous 1...5455565758...120 Next »