VB Blog

VB2016 video: Nymaim: the Untold Story

Posted by Martijn Grooten on Feb 8, 2017

Until very recently, the Nymaim banking trojan was a serious problem in Poland. Today, we publish the video of the VB2016 presentation by CERT Polska researchers Jarosław Jedynak and Maciej Kotowicz, in which they analyse this malware-dropper-turned-banking-trojan.

Posted by Virus Bulletin on Feb 2, 2017

Should users uninstall their anti-virus products, as was recently suggested by a security expert in a widely shared article? In a guest post, security consultant Hendrik Pilz explains why he doesn't think this is a good idea.

Posted by Martijn Grooten on Jan 31, 2017

In a new paper published by Virus Bulletin, FireEye researchers Ankit Anubhav and Manish Sardiwal analyse the 'God Mode' vulnerability CVE-2016-0189 in Microsoft Internet Explorer.

Posted by Martijn Grooten on Jan 30, 2017

At VB2016, Peter Kruse gave a presentation detailing the Neverquest trojan, the alleged author of which was arrested in Spain earlier this month. Today, we publish the recording of Peter's presentation.

Posted by Martijn Grooten on Jan 24, 2017

Crypto is hard, and malware authors often make mistakes. At VB2016, Check Point researchers Yaniv Balmas and Ben Herzog discussed the whys and hows of some of the crypto blunders made by malware authors. Today, we publish their paper and the recording of their presentation.

Posted by Martijn Grooten on Jan 19, 2017

We have opened the Call for Papers for VB2017. We are particularly interested in receiving submissions from those working outside the security industry itself.

Posted by Martijn Grooten on Jan 11, 2017

According to a report by IBM Security, 70 per cent of businesses that are the victim of a ransomware attack end up paying the ransom. However, the report also suggests that a little over half of businesses manage to avoid getting infected at all, showing they must be doing something right.

Posted by Martijn Grooten on Jan 5, 2017

The latest VBSpam test brings good news: at least 199 out of every 200 emails containing a malicious attachment were blocked by email security solutions. All of the full solutions tested achieved a VBSpam award, with five earning a VBSpam+ award.

Posted by Helen Martin on Jan 5, 2017

"Another year has come to its end and the malware battle still rages on." In January 2004, Jamz Yaneza reflected on the year just ended and pondered what the coming year would have in store for the AV industry.

Posted by Martijn Grooten on Jan 4, 2017

At VB2016, ThreatConnect Director of Research Innovation Robert Simmons presented a paper on setting up an open source malware lab. Today, we share the accompanying paper and video.

Previous1...3839404142...215Next

Search blog

Meta-phishing

Phishing warning contains link to... phishing site.
Phishing warning contains link to... phishing site. The anti-malware industry can congratulate itself for there being an increasing awareness among users about phishing. Users are… https://www.virusbulletin.com/blog/2008/02/meta-phishing/

Bumper Patch Tuesday short of one patch

Excel remains vulnerable as expected fix is dropped.
Excel remains vulnerable as expected fix is dropped.Microsoft has issued its monthly 'Patch Tuesday' set of security updates, with a larger than usual crop of patches for a variety… https://www.virusbulletin.com/blog/2008/02/bumper-patch-tuesday-short-one-patch/

Trend vs. ClamAV patent row hots up

Free software advocates call for boycott of Trend.
Free software advocates call for boycott of Trend. With legal proceedings ongoing between Trend Micro and gateway appliance specialist Barracuda Networks, concerning Barracuda's… https://www.virusbulletin.com/blog/2008/02/trend-vs-clamav-patent-row-hots/

M&S joins high-street AV retail crowd

Upmarket store to match rivals in security software selling.
Upmarket store to match rivals in security software selling. Leading UK retailer Marks & Spencer (M&S) has joined fellow high-street chain Woolworths and supermarket leviathan… https://www.virusbulletin.com/blog/2008/02/m-amp-s-joins-high-street-av-retail-crowd/

Over 1 per cent of search results include malicious sites

Google research paper confirms significant increase in number of malware-serving websites.
Google research paper confirms significant increase in number of malware-serving websites. Recent reports of increasing numbers of websites serving malicious content have been… https://www.virusbulletin.com/blog/2008/02/over-1-cent-search-results-include-malicious-sites/

Storm Valentines run under way

Seasonal spam and malware barrage gets going.
Seasonal spam and malware barrage gets going. The expected run of 'Storm' spams, pushing links to their latest line of malware disguised as Valentine's messages, has begun, with… https://www.virusbulletin.com/blog/2008/02/storm-valentines-run-under-way/

More PDF exploits seen in wild

Adobe Reader and Acrobat flaws open way for further document attacks.
Adobe Reader and Acrobat flaws open way for further document attacks. A string of vulnerabilities in Adobe's PDF viewing and editing software, disclosed late last week by Adobe and… https://www.virusbulletin.com/blog/2008/02/more-pdf-exploits-seen-wild/

Live Mail CAPTCHA system bypassed

Spammers use botnet to register accounts on popular free webmail service.
Spammers use botnet to register accounts on popular free webmail service.Spammers have written a program that cracks the CAPTCHAS used by the Windows Live Mail registration system.… https://www.virusbulletin.com/blog/2008/02/live-mail-captcha-system-bypassed/

Complex attack targets Better Business Bureau

Sophisticated scam uses personalised mails, real site redirects.
Sophisticated scam uses personalised mails, real site redirects. A highly sophisticated email phishing scam is using a redirection flaw in the website of the Better Business Bureau… https://www.virusbulletin.com/blog/2008/02/complex-attack-targets-better-business-bureau/

FTC fines spammers over $2.5 million

Drug pushers busted for phony claims and CAN-SPAM breaches.
Drug pushers busted for phony claims and CAN-SPAM breaches. After a successful case brought by the US Federal Trade Commission (FTC), a pharmaceuticals firm and its head have been… https://www.virusbulletin.com/blog/2008/02/ftc-fines-spammers-over-2-5-million/

Yahoo! jukebox flaw exploits in wild

Zero day vulnerability in music system rapidly targeted.
Zero day vulnerability in music system rapidly targeted.Vulnerabilities in Yahoo! Jukebox, a free music-management system provided by Yahoo!, have been exploited by in-the-wild… https://www.virusbulletin.com/blog/2008/02/yahoo-jukebox-flaw-exploits-wild/

419 scammers plead guilty in US

African trio admit attempts to defraud via spam.
African trio admit attempts to defraud via spam. Three men, two from Nigeria and a third from Senegal, entered guilty pleas in a Brooklyn, New York, courtroom last week after being… https://www.virusbulletin.com/blog/2008/02/419-scammers-plead-guilty-us/

Fake security blogs lead to malware

Blogger sites play on fears to draw victims to porn, trojans.
Blogger sites play on fears to draw victims to porn, trojans. According to a report from Aladdin, numerous fake security blogs have been set up on the Google-owned Blogger blogging… https://www.virusbulletin.com/blog/2008/02/fake-security-blogs-lead-malware/

New security software testing standards body formed

AMTSO to promote cross-industry debate and higher standards in testing.
AMTSO to promote cross-industry debate and higher standards in testing. A collaborative group from across the security industry has officially been founded this week, aiming to… https://www.virusbulletin.com/blog/2008/02/new-security-software-testing-standards-body-formed/

February issue of VB published

The February issue of Virus Bulletin is now available for subscribers to download.
The February issue of Virus Bulletin is now available for subscribers to download. The February 2008 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2008/02/february-issue-vb-published/

February

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2008/02/

First virus-writing arrests in Japan

Winny worm authors brought to book - for copyright violation.
Winny worm authors brought to book - for copyright violation. Japan has seen its first ever arrests of virus writers, with three men taken into custody in Kyoto last week and… https://www.virusbulletin.com/blog/2008/01/first-virus-writing-arrests-japan/

Barracuda battles Trend Micro patent claims

Trend demands licensing for gateway virus scanning idea.
Trend demands licensing for gateway virus scanning idea.Barracuda Networks has announced it is fighting a legal battle against Trend Micro, who has claimed US patent rights to the… https://www.virusbulletin.com/blog/2008/01/barracuda-battles-trend-micro-patent-claims/

Ledger poisons Google

Actor's death exploited by malware writers to infect computers.
Actor's death exploited by malware writers to infect computers. The death of actor Heath Ledger on Tuesday had barely been confirmed a few hours when malicious websites started… https://www.virusbulletin.com/blog/2008/01/ledger-poisons-google/

Polyglot worm spreads through MSN

Worm changes language to target wide audience.
Worm changes language to target wide audience. A new worm has been discovered that spreads through MSN Messenger. Once active, the worm opens random TCP ports to connect to an IRC… https://www.virusbulletin.com/blog/2008/01/polyglot-worm-spreads-through-msn/

« Previous 1...7172737475...120 Next »