VB Blog

Subtle change could see a reduction in installation of malicious Chrome extensions

Posted by   Martijn Grooten on   Jun 13, 2018

Google has made a subtle change to its Chrome browser, banning the inline installation of new extensions, thus making it harder for malware authors to trick users into unwittingly installing malicious extensions.

Read more  

Paper: EternalBlue: a prominent threat actor of 2017–2018

Posted by   Martijn Grooten on   Jun 11, 2018

We publish a paper by researchers from Quick Heal Security Labs in India, who study the EternalBlue and DoublePulsar exploits in full detail.

Read more  

'North Korea' a hot subject among VB2018 talks

Posted by   Virus Bulletin on   Jun 1, 2018

Several VB2018 papers deal explicitly or implicitly with threats that have been attributed to North Korean actors.

Read more  

Expired domain led to SpamCannibal's blacklist eating the whole world

Posted by   Martijn Grooten on   May 31, 2018

The domain of the little-used SpamCannibal DNS blacklist had expired, resulting in it effectively listing every single IP address.

Read more  

MnuBot banking trojan communicates via SQL server

Posted by   Martijn Grooten on   May 30, 2018

Researchers at IBM X-Force have discovered MnuBot, a banking trojan targeting users in Brazil, which is noteworthy for using SQL Server for command and control communication.

Read more  

Throwback Thursday: Giving the EICAR test file some teeth

Posted by   Martijn Grooten on   May 24, 2018

The 68-byte EICAR test file plays as important a role today as it did 19 years ago. In this week's Throwback Thursday we look back at a VB99 conference paper in which Randy Abrams described how this 'miracle tool' worked and how it could be used.

Read more  

XMRig used in new macOS cryptominer

Posted by   Martijn Grooten on   May 23, 2018

A new piece of cryptocurrency-mining malware on macOS has been found to use the popular XMRig miner.

Read more  

Tendency for DDoS attacks to become less volumetric fits in a wider trend

Posted by   Martijn Grooten on   May 22, 2018

CDN provider Cloudflare reports an increase in DDoS attacks targeting layer 7 and focusing on exhausting server resources rather than sending large volumes of data. This fits in a wider trend.

Read more  

Turkish Twitter users targeted with mobile FinFisher spyware

Posted by   Martijn Grooten on   May 15, 2018

Through fake social media accounts, users were tricked into installing an Android application that was actually a mobile version of the FinFisher spyware.

Read more  

Hide'n'Seek IoT botnet adds persistence

Posted by   Martijn Grooten on   May 9, 2018

The Hide'n'Seek IoT botnet has received an update to make its infection persist on infected devices beyond a restart.

Read more  
Previous1...2021222324...215Next

Search blog

Throwback Thursday: KAOS on the Superhighway?

This Throwback Thursday, we turn the clock back to 1994, when KAOS4 was discovered on the Internet.
This Throwback Thursday, we turn the clock back to 1994, when KAOS4 was discovered on the Internet. A new virus has been found on the Internet — today, this is an unfortunate fact… https://www.virusbulletin.com/blog/2015/06/throwback-thursday-kaos-superhighway/

Paper: Using .NET GUIDs to help hunt for malware

Tool to extract identifiers incorporated into VirusTotal.
Tool to extract identifiers incorporated into VirusTotal. The large number of new malware samples found each day hasn't made malware analysis an easier task, and researchers could… https://www.virusbulletin.com/blog/2015/06/paper-using-net-guids-help-hunt-malware/

Steganoprague: a VB2015 competition & puzzle

Use your obfuscation and deobfuscation skills to win a prize during the VB2015 conference!
Use your obfuscation and deobfuscation skills to win a prize during the VB2015 conference! "It is time for defenders to go on the offence," wrote Andreas Lindh in Virus Bulletin… https://www.virusbulletin.com/blog/2015/06/steganoprague-competition-amp-puzzle/

NSA, GCHQ found to target anti-virus products

Agencies looked for vulnerabilities to exploit and for submitted malware samples.
Agencies looked for vulnerabilities to exploit and for submitted malware samples. New documents from NSA whistle-blower Edward Snowden have revealed the agency and its British… https://www.virusbulletin.com/blog/2015/06/nsa-gchq-found-target-anti-virus-products/

Paper: Beta exploit pack: one more piece of crimeware for the infection road!

Exploit kit currently being tested focuses primarily on Flash Player exploits.
Exploit kit currently being tested focuses primarily on Flash Player exploits. Nuclear, Angler, Magnitude and Rig. Security researchers know we're talking about exploit kits (or… https://www.virusbulletin.com/blog/2015/06/paper-beta-exploit-pack-one-more-piece-crimeware-infection-road/

Throwback Thursday: Macro Viruses & The Little Virus That Could...

This Throwback Thursday, we turn the clock back to 1999, when Melissa was causing havoc across the globe and VB presented a series of articles detailing all you ever wanted to know about macro viruses but were afraid to ask.
This Throwback Thursday, we turn the clock back to 1999, when Melissa was causing havoc across the globe and VB presented a series of articles detailing all you ever wanted to know… https://www.virusbulletin.com/blog/2015/06/throwback-thursday-macro-viruses-amp-little-virus-could/

Virus Bulletin announces 'Small Talks' for VB2015

Smaller, more informal format ideal for discussion and debate.
Smaller, more informal format ideal for discussion and debate. When, a few months ago, we announced the programme for VB2015, we promised 'a number of added extras'. We have… https://www.virusbulletin.com/blog/2015/06/announces-small-talks/

Throwback Thursday: Virus Writers

This Throwback Thursday, we bring you a series of articles from the archives that looked at virus writers, asking 'who are they?', 'why do they do it?', and other pertinent questions.
This Throwback Thursday, we bring you a series of articles from the archives that looked at virus writers, asking 'who are they?', 'why do they do it?', and other pertinent… https://www.virusbulletin.com/blog/2015/06/throwback-thursday-virus-writers/

Vawtrak uses Tor2Web to connect to Tor hidden C&C servers

Option hides the servers, without having to include a Tor client in the malware.
Option hides the servers, without having to include a Tor client in the malware. The authors of the Vawtrak trojan (also known as Neverquest) have moved some of its C&C servers to… https://www.virusbulletin.com/blog/2015/06/vawtrak-uses-tor2web-connect-tor-hidden-c-amp-c-servers/

Duqu 2.0 found to target security company

Advanced malware also targeted venues linked to Iranian nuclear negotiations.
Advanced malware also targeted venues linked to Iranian nuclear negotiations. There are some security stories you couldn't make up. The authors of an advanced malware tool have… https://www.virusbulletin.com/blog/2015/06/duqu-2-0-found-target-security-company/

June

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2015/06/

London calling!

Infosecurity Europe, BSides London and the Security Bloggers Meetup.
Infosecurity Europe, BSides London and the Security Bloggers Meetup. June is the new April, at least for the security industry, as its traditional get-together in London… https://www.virusbulletin.com/blog/2015/05/london-calling/

Paper: On the beat

Kevin Williams looks back at UK law enforcement successes at combating cybercrime.
Kevin Williams looks back at UK law enforcement successes at combating cybercrime. In a recent Throwback Thursday article, we looked back at the sentencing of self-confessed virus… https://www.virusbulletin.com/blog/2015/05/paper-beat/

Throwback Thursday: Research and Other Hobbies

This Throwback Thursday we reflect on the life of one of industry's greats, who sadly passed away this week: Prof. Klaus Brunnstein.
This Throwback Thursday we reflect on the life of one of industry's greats, who sadly passed away this week: Prof. Klaus Brunnstein. Professor Klaus Brunnstein was one of the… https://www.virusbulletin.com/blog/2015/05/throwback-thursday-research-and-other-hobbies/

Weak keys and prime reuse make Diffie-Hellman implementations vulnerable

'Logjam' attack possibly used by the NSA to decrypt VPN traffic.
'Logjam' attack possibly used by the NSA to decrypt VPN traffic. A group of researchers have discovered a number of vulnerabilities in the way the Diffie-Hellman key exchange… https://www.virusbulletin.com/blog/2015/05/weak-keys-and-prime-reuse-make-diffie-hellman-implementations-vulnerable/

Virus Bulletin announces student tickets for VB2015

87% discount for students and the option to give a lightning talk.
87% discount for students and the option to give a lightning talk. A few weeks ago, we opened registration for VB2015, which will take place in Prague from 30 September to 2… https://www.virusbulletin.com/blog/2015/05/announces-student-tickets/

Throwback Thursday: Double Trouble / The Perfect Couple

Once again this Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to the mid-90s when a new era of viruses was believed to be dawning.
Once again this Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to the mid-90s when a new era of viruses was believed to be… https://www.virusbulletin.com/blog/2015/05/throwback-thursday-double-trouble-perfect-couple/

Book review: The Florentine Deception, by Carey Nachenberg

John Hawes reviews Carey Nachenberg's debut novel.
John Hawes reviews Carey Nachenberg's debut novel. There's a rather serious problem with fiction involving computers, and computer security in particular. It seems like any time a… https://www.virusbulletin.com/blog/2015/05/book-review-florentine-deception-carey-nachenberg/

Book review: Data and Goliath, by Bruce Schneier

Paul Baccas reviews Data and Goliath 'The Hidden Battles to Collect You Data and Control Your World', by Bruce Schneier.
Paul Baccas reviews Data and Goliath 'The Hidden Battles to Collect You Data and Control Your World', by Bruce Schneier. This book has been difficult to review. It has proved… https://www.virusbulletin.com/blog/2015/05/book-review-data-and-goliath-bruce-schneier/

Throwback Thursday: When Love came to Town

Once again this Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to 2000 in the week of the 15th anniversary of the LoveLetter virus.
Once again this Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to 2000 in the week of the 15th anniversary of the LoveLetter… https://www.virusbulletin.com/blog/2015/05/throwback-thursday-when-love-came-town/

« Previous 1...3031323334...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.