VB Blog

Subtle change could see a reduction in installation of malicious Chrome extensions

Posted by   Martijn Grooten on   Jun 13, 2018

Google has made a subtle change to its Chrome browser, banning the inline installation of new extensions, thus making it harder for malware authors to trick users into unwittingly installing malicious extensions.

Read more  

Paper: EternalBlue: a prominent threat actor of 2017–2018

Posted by   Martijn Grooten on   Jun 11, 2018

We publish a paper by researchers from Quick Heal Security Labs in India, who study the EternalBlue and DoublePulsar exploits in full detail.

Read more  

'North Korea' a hot subject among VB2018 talks

Posted by   Virus Bulletin on   Jun 1, 2018

Several VB2018 papers deal explicitly or implicitly with threats that have been attributed to North Korean actors.

Read more  

Expired domain led to SpamCannibal's blacklist eating the whole world

Posted by   Martijn Grooten on   May 31, 2018

The domain of the little-used SpamCannibal DNS blacklist had expired, resulting in it effectively listing every single IP address.

Read more  

MnuBot banking trojan communicates via SQL server

Posted by   Martijn Grooten on   May 30, 2018

Researchers at IBM X-Force have discovered MnuBot, a banking trojan targeting users in Brazil, which is noteworthy for using SQL Server for command and control communication.

Read more  

Throwback Thursday: Giving the EICAR test file some teeth

Posted by   Martijn Grooten on   May 24, 2018

The 68-byte EICAR test file plays as important a role today as it did 19 years ago. In this week's Throwback Thursday we look back at a VB99 conference paper in which Randy Abrams described how this 'miracle tool' worked and how it could be used.

Read more  

XMRig used in new macOS cryptominer

Posted by   Martijn Grooten on   May 23, 2018

A new piece of cryptocurrency-mining malware on macOS has been found to use the popular XMRig miner.

Read more  

Tendency for DDoS attacks to become less volumetric fits in a wider trend

Posted by   Martijn Grooten on   May 22, 2018

CDN provider Cloudflare reports an increase in DDoS attacks targeting layer 7 and focusing on exhausting server resources rather than sending large volumes of data. This fits in a wider trend.

Read more  

Turkish Twitter users targeted with mobile FinFisher spyware

Posted by   Martijn Grooten on   May 15, 2018

Through fake social media accounts, users were tricked into installing an Android application that was actually a mobile version of the FinFisher spyware.

Read more  

Hide'n'Seek IoT botnet adds persistence

Posted by   Martijn Grooten on   May 9, 2018

The Hide'n'Seek IoT botnet has received an update to make its infection persist on infected devices beyond a restart.

Read more  
Previous1...2021222324...215Next

Search blog

11 out of 26 anti-virus products fail VB100 certification

VB reveals which products failed to meet VB100 certification criteria, and updated 'RAP quadrant' showing Reactive And Proactive detection abilities.
VB reveals which products failed to meet VB100 certification criteria, and updated 'RAP quadrant' showing Reactive And Proactive detection abilities.Virus Bulletin has revealed the… https://www.virusbulletin.com/blog/2009/10/11-out-26-anti-virus-products-fail-certification/

Webmail data leak hype deflated

Rumoured phishing explosion grabs headlines, reality much more mundane.
Rumoured phishing explosion grabs headlines, reality much more mundane. This week has seen some major news organisations picking up on the story of tens of thousands of sets of… https://www.virusbulletin.com/blog/2009/10/webmail-data-leak-hype-deflated/

Microsoft steps into free AV market

Security Essentials release creates expected storm of words.
Security Essentials release creates expected storm of words.Microsoft's release of its free Security Essentials product this week sparked the expected barrage of views and opinions… https://www.virusbulletin.com/blog/2009/10/microsoft-steps-free-av-market/

October

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2009/10/

October issue of VB published

The October issue of Virus Bulletin is now available for subscribers to download.
The October issue of Virus Bulletin is now available for subscribers to download. The October 2009 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2009/10/october-issue-vb-published/

Latest AV-Comparatives test results released

High scores as 7 out of 16 graded Advanced+ in on demand tests
High scores as 7 out of 16 graded Advanced+ in on demand tests Independent testing body AV-Comparatives have released the results of their latest round of on demand anti-malware… https://www.virusbulletin.com/blog/2009/09/latest-av-comparatives-test-results-released/

Rogue AV claims to send money to environmental causes

'Green AV' best added to blacklist to avoid red faces.
'Green AV' best added to blacklist to avoid red faces. In an attempt to lure users into buying it, the rogue anti-malware product Green AV claims to send US$2 per purchased product… https://www.virusbulletin.com/blog/2009/09/rogue-av-claims-send-money-environmental-causes/

September

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2009/09/

September issue of VB published

The September issue of Virus Bulletin is now available for subscribers to download.
The September issue of Virus Bulletin is now available for subscribers to download. The September 2009 issue of Virus Bulletin is now available for subscribers to browse online… https://www.virusbulletin.com/blog/2009/09/september-issue-vb-published/

Take-down of rogue ISP sees temporary drop in spam levels

Spam levels back to normal within a few days.
Spam levels back to normal within a few days. The take-down of the rogue ISP Real Host on 1 August saw spam levels temporarily drop by more than a third, Messagelabs claims in its… https://www.virusbulletin.com/blog/2009/08/take-down-rogue-isp-sees-temporary-drop-spam-levels/

Unspam files lawsuit against unnamed cybercrooks

Anti-spam firm hopes to force banks to share more information on attacks.
Anti-spam firm hopes to force banks to share more information on attacks.Unspam Technologies, the company behind Project Honey Pot, has filed a lawsuit against unnamed 'John Does',… https://www.virusbulletin.com/blog/2009/08/unspam-files-lawsuit-against-unnamed-cybercrooks/

Anti-Obama sentiments used in spam campaign

'DDoS software' turns out to be malware.
'DDoS software' turns out to be malware. In a new spam campaign users are being urged to participate in a DDoS attack on the website of American president Barack Obama in protest… https://www.virusbulletin.com/blog/2009/08/anti-obama-sentiments-used-spam-campaign/

ICANN adopts new domain tasting policy

'Free temporary registrations' come to an end.
'Free temporary registrations' come to an end. A new policy adopted by ICANN, the organization responsible for the assignment of domain names and IP addresses, has brought the… https://www.virusbulletin.com/blog/2009/08/icann-adopts-new-domain-tasting-policy/

Yahoo! re-opens e-postage discussion

'CentMail' to benefit charities, harm spammers.
'CentMail' to benefit charities, harm spammers. Online giant Yahoo! has launched a website to give a charitable twist to the old idea of combating spam by making senders pay a… https://www.virusbulletin.com/blog/2009/08/yahoo-re-opens-e-postage-discussion/

August issue of VB published

The August issue of Virus Bulletin is now available for subscribers to download.
The August issue of Virus Bulletin is now available for subscribers to download. The August 2009 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2009/08/august-issue-vb-published/

August

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2009/08/

McColo shutdown not felt the same by all recipients

Mailbox-level reduction may depend on spam detection methods.
Mailbox-level reduction may depend on spam detection methods. When the rogue provider McColo was taken offline in November 2008, depriving many botnets of their command and control… https://www.virusbulletin.com/blog/2009/07/mccolo-shutdown-not-felt-same-all-recipients/

Yxe trojan infecting mobile phones

Symbian software-signing slipup certifies SMS spambot.
Symbian software-signing slipup certifies SMS spambot. A new trojan, the first of its kind, is affecting users of the Symbian mobile operating system by spreading itself via text… https://www.virusbulletin.com/blog/2009/07/yxe-trojan-infecting-mobile-phones/

Call for last-minute technical papers

Submissions invited for technical 'turbo' talks at VB Geneva.
Submissions invited for technical 'turbo' talks at VB Geneva. Virus Bulletin is seeking submissions from those wishing to present last-minute technical papers at VB2009. The VB… https://www.virusbulletin.com/blog/2009/07/call-last-minute-technical-papers/

Five botnets responsible for 75% of spam sent

Each infected machine sends spam at rate of almost two messages per second.
Each infected machine sends spam at rate of almost two messages per second.Spam levels have increased 60% since the beginning of this year, according to security company Marshal8e6… https://www.virusbulletin.com/blog/2009/07/five-botnets-responsible-75-spam-sent/

« Previous 1...6162636465...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.