VB Blog

Alleged author of creepy FruitFly macOS malware arrested

Posted by Martijn Grooten on Jan 11, 2018

A 28-year old man from Ohio has been arrested on suspicion of having created the mysterious FruitFly malware that targeted macOS and used it to spy on its victims.

Posted by Martijn Grooten on Jan 10, 2018

At the start of the new year, Virus Bulletin looks back at the threats seen in the 2017 and at the security products that are available to help mitigate them.

Posted by Martijn Grooten on Jan 9, 2018

Spamhaus's annual report on botnet activity shows that botherders tend to use popular, legitimate hosting providers, domain registrars and top-level domains when setting up command-and-control servers.

Posted by Martijn Grooten on Jan 5, 2018

As tech support scammers continue to target the computer illiterate through cold calling, VB's Martijn Grooten uses his own experience to share some advice on how to investigate such scams.

Posted by Martijn Grooten on Jan 4, 2018

Just four days into the new year, two serious attacks in modern processors, dubbed Meltdown and Spectre, have been discovered. The attacks can be mitigated by patches to the operating system, but anti-virus software vendors need to make sure their products are compatible with the patches.

Posted by Martijn Grooten on Dec 22, 2017

Martijn Grooten reports on the 20th AVAR conference, which took place earlier in December in Beijing, China.

Posted by Virus Bulletin on Dec 22, 2017

Virus Bulletin researchers report back from a very interesting fifth edition of Botconf, the botnet fighting conference.

Posted by Martijn Grooten on Dec 21, 2017

(In)security is a global issue that affects countries around the world, but in recent years none has been so badly hit as Ukraine. Today, we publish the videos of two VB2017 talks about attacks that hit Ukraine particularly badly: a talk by Alexander Adamov (NioGuard) on (Not)Petya and related attacks, and another by Robert Lipovsky and Anton Cherepanov (ESET) on Industroyer.

Posted by Martijn Grooten on Dec 21, 2017

On its website, Facebook now shows which emails it has sent you recently, thus helping you to determine which emails are real, and which should be discarded as phishing.

Posted by Martijn Grooten on Dec 19, 2017

Clarification in the language of the Wassenaar Arrangement, a multilateral export control regime for conventional arms and dual-use goods and technologies, means those involved in vulnerability disclosure or botnet takedown won't have to worry about acquiring an export licence.

Previous1...2526272829...215Next

Search blog

You are your own threat model

For most people, the biggest security threat is that of themselves doing something they shouldn't do.
For most people, the biggest security threat is that of themselves doing something they shouldn't do. Last week, Microsoft wrote about the return of macro malware where, now that… https://www.virusbulletin.com/blog/2015/05/you-are-your-own-threat-model/

May

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2015/05/

Report: six anti-virus solutions pass annual Linux test

Clean sweep of passes in VB100 test on Red Hat Enterprise Linux.
Clean sweep of passes in VB100 test on Red Hat Enterprise Linux. 2015 will yet again not be the 'Year of the Linux Desktop', yet behind the scenes' Linux plays an important role in… https://www.virusbulletin.com/blog/2015/05/report-six-anti-virus-solutions-pass-annual-linux-test/

POODLE is the brown M&Ms of security

Just because it won't be exploited, doesn't mean you shouldn't patch it.
Just because it won't be exploited, doesn't mean you shouldn't patch it. There is a famous story about the rock band Van Halen whose lists of requirements when performing a show… https://www.virusbulletin.com/blog/2015/04/poodle-brown-m-amp-ms-security/

Throwback Thursday: Regina v Christopher Pile: The Inside Story & Off with his Head!

This Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to 1996 to look at events surrounding the issuing of the UK's first custodial sentence for writing and distributing computer viruses.
This Throwback Thursday, we bring you not one but two (related) pieces from the archives as VB heads back to 1996 to look at events surrounding the issuing of the UK's first… https://www.virusbulletin.com/blog/2015/04/throwback-thursday-regina-v-christopher-pile-inside-story-amp-his-head/

Report: 15 solutions achieve VBSpam award

Test process also uncovers job spam illustrative of trend.
Test process also uncovers job spam illustrative of trend. Last week, we published our 36th comparative anti-spam test. All but one of the 16 participating full solutions achieved… https://www.virusbulletin.com/blog/2015/04/report-15-solutions-achieve-vbspam-award/

VB2015 offer for new security companies

Write an article for the Bulletin, get a half-price ticket for the conference.
Write an article for the Bulletin, get a half-price ticket for the conference. Things are going well for the security industry. That may, of course, be because of the poor state of… https://www.virusbulletin.com/blog/2015/04/offer-new-security-companies/

Throwback Thursday: Through the Administrator's Eye

This Throwback Thursday, VB heads back to 1997 with 'Through the Administrator's Eye'.
This Throwback Thursday, VB heads back to 1997 with 'Through the Administrator's Eye'. Over the last couple of years, the 'Throwback Thursday' trend has taken the Internet by… https://www.virusbulletin.com/blog/2015/04/throwback-thursday-through-administrator-s-eye/

Registration for VB2015 has opened

Early bird discounts available for registrations made before 30 June.
Early bird discounts available for registrations made before 30 June. Today, we have opened registration for VB2015, the 25th Virus Bulletin International Conference. 'VB' is… https://www.virusbulletin.com/blog/2015/04/registration-has-opened/

Ross Anderson awarded BCS Lovelace Medal

Cambridge professor to deliver VB2015 keynote.
Cambridge professor to deliver VB2015 keynote. Yesterday, the British Computer Society (BCS) announced that the 2015 Lovelace Medal has been awarded to Prof. Ross Anderson. Named… https://www.virusbulletin.com/blog/2015/04/ross-anderson-awarded-bcs-lovelace-medal/

Does it matter if my banking password is 'Prague'?

Users do choose weak passwords, but they aren't as big a problem as we think.
Users do choose weak passwords, but they aren't as big a problem as we think. This week, I spent a few days at the Cyber Security Summit Financial Services conference in Prague,… https://www.virusbulletin.com/blog/2015/04/does-it-matter-if-my-banking-password-prague/

Throwback Thursday: The Unbearable Lightness of Testing

VB gets in on the Throwback Thursday act, delving into the archives.
VB gets in on the Throwback Thursday act, delving into the archives. Over the last couple of years, the 'Throwback Thursday' trend has taken the Internet by storm, with social… https://www.virusbulletin.com/blog/2015/04/throwback-thursday-unbearable-lightness-testing/

VB2014 paper: Swipe away, we're watching you

Hong Kei Chan and Liang Huang describe the various aspects and the evolution of point-of-sale malware.
Hong Kei Chan and Liang Huang describe the various aspects and the evolution of point-of-sale malware.Since the close of the VB2014 conference in Seattle in October, we have been… https://www.virusbulletin.com/blog/2015/04/paper-swipe-away-we-re-watching-you/

Virus Bulletin announces two VB2015 keynotes

Ross Anderson and Costin Raiu to deliver keynote addresses at 25th Virus Bulletin conference.
Ross Anderson and Costin Raiu to deliver keynote addresses at 25th Virus Bulletin conference. Two days after we published the programme for VB2015, we are excited to announce that… https://www.virusbulletin.com/blog/2015/04/announces-two-keynotes/

Google 'suspends' CNNIC from Chrome's certificate store

Chinese certificate authority told to re-apply.
Chinese certificate authority told to re-apply. When a web client, such as a browser, attempts to make an HTTPS connection, it needs to know that no man-in-the-middle attack is… https://www.virusbulletin.com/blog/2015/04/google-suspends-cnnic-chrome-s-certificate-store/

Volatile Cedar campaign - cyber espionage isn't just for large nation states

Details of malware to be discussed at VB2015.
Details of malware to be discussed at VB2015. Researchers at Check Point have revealed details of a cyber-espionage campaign, dubbed 'Volatile Cedar', that has been active since at… https://www.virusbulletin.com/blog/2015/04/volatile-cedar-campaign-cyber-espionage-isn-t-just-large-nation-states/

April

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2015/04/

VB2015 conference programme announced

From drones to elephants: an exciting range of topics will be covered in Prague.
From drones to elephants: an exciting range of topics will be covered in Prague. In six months' time, security researchers from around the world will gather in Prague for the 25th… https://www.virusbulletin.com/blog/2015/03/conference-programme-announced/

Paper: a timeline of mobile botnets

Ruchna Nigam provides an overview of more than 60 mobile malware families.
Ruchna Nigam provides an overview of more than 60 mobile malware families. The rise of mobile malware is still a relatively recent thing, with the first actual mobile botnets not… https://www.virusbulletin.com/blog/2015/03/paper-timeline-mobile-botnets/

Paper: Dylib hijacking on OS X

Patrick Wardle shows how OS X is also vulnerable to once common Windows attacks.
Patrick Wardle shows how OS X is also vulnerable to once common Windows attacks. A few years ago, DLL hijacking on Windows was really hot, despite the fact that the concept had… https://www.virusbulletin.com/blog/2015/03/paper-dylib-hijacking-os-x/

« Previous 1...3132333435...120 Next »