VB Blog

Avast to present technical details of CCleaner hack at VB2017

Posted by Martijn Grooten on Oct 2, 2017

The recently discovered malicious CCleaner version has become one of the biggest security stories of 2017. Two researchers from Avast, the company that had recently acquired CCleaner developer Piriform, will share the results of their investigations at VB2017 in Madrid this week.

Posted by Martijn Grooten on Oct 2, 2017

We preview the VB2017 paper by Kaspersky Lab researchers Juan Andrés Guerrero-Saade and Costin Raiu on fourth-party collection and its implications for attack attribution.

Posted by Martijn Grooten on Sep 29, 2017

We preview Patrick Wardle's VB2017 paper, in which the Synack researcher analyses the mysterious OSX/FruitFly malware by setting up a custom C&C server.

Posted by Martijn Grooten on Sep 28, 2017

More than 50 security industry experts will present conference papers to their peers at VB2017 next week, and there are several papers on the programme with a certain newsworthiness. There is still time for cybersecurity journalists to apply for a press pass.

Posted by Martijn Grooten on Sep 25, 2017

We preview the VB2017 paper by Dhia Mahjoub (OpenDNS) and Jason Passwaters (Intel471) who combine an actor-centric and a network-centric approach to analysing bulletproof hosting operations.

Posted by Martijn Grooten on Sep 22, 2017

As has become tradition, VB2017 will once again see a security industry table football tournament. Register your team now for some great fun and adrenaline-filled matches in between sessions in Madrid!

Posted by Martijn Grooten on Sep 21, 2017

Greater Manchester Police is one of many organizations still running Windows XP on some of its systems. This is bad practice, but the case against running XP is far more subtle than we often pretend it is.

Posted by Martijn Grooten on Sep 21, 2017

Researchers from ESET have found a new way in which the FinSpy/FinFisher 'government spyware' can infect users, details of which they will present at VB2017 in Madrid.

Posted by Virus Bulletin on Sep 20, 2017

Activity monitoring by security products in general, and HTTPS traffic inspection in particular, are sensitive issues in the security community. There is a time and a place for them, VB's Martijn Grooten argues, but only when they are done right.

Posted by Martijn Grooten on Sep 19, 2017

We preview the VB2017 paper by Fortinet researcher Axelle Apvrille, in which she looks at some less obvious tools for reverse engineering Android malware.

Previous1...2930313233...215Next

Search blog

Vulnerability hits F-Secure gateway products

Flaw in OpenSSL could allow DoS on servers.
Flaw in OpenSSL could allow DoS on servers. A vulnerability in OpenSSL software, used to access the administration interface in some F-Secure gateway and mail protection products,… https://www.virusbulletin.com/blog/2006/11/vulnerability-hits-f-secure-gateway-products/

Worm targets old Symantec hole

Long-patched vulnerability attacked by new Spybot.
Long-patched vulnerability attacked by new Spybot. A version of the Spybot worm has been spotted attempting to use a vulnerability in Symantec Client Security and Symantec… https://www.virusbulletin.com/blog/2006/11/worm-targets-old-symantec-hole/

Europe facing 38 billion spams a day by 2010

Research group releases report on future spam trends.
Research group releases report on future spam trends. Technology market research firm The Radicati Group has unveiled an in-depth study of likely future trends in the European… https://www.virusbulletin.com/blog/2006/11/europe-facing-38-billion-spams-day-2010/

Spyware pushers let off fines

FTC reduces punishment for crooks 'unable to pay'.
FTC reduces punishment for crooks 'unable to pay'. Two spyware operations have settled lawsuits brought against them by the Federal Trade Commission (FTC) at a huge discount. The… https://www.virusbulletin.com/blog/2006/11/spyware-pushers-let-fines/

Severe vulnerability hits Mac OSX

Exploit published for gaping DMG hole.
Exploit published for gaping DMG hole. A serious vulnerability found in the DMG handling on fully up-to-date installations of Apple's OSX is threatening to upset the platform's… https://www.virusbulletin.com/blog/2006/11/severe-vulnerability-hits-mac-osx/

McAfee in anti-phishing confusion

Latest study rates all filters poorly, slates SiteAdvisor.
Latest study rates all filters poorly, slates SiteAdvisor. In two recent studies of anti-phishing technologies, one (sponsored by Microsoft) rated Internet Explorer highest, while… https://www.virusbulletin.com/blog/2006/11/mcafee-anti-phishing-confusion/

Spammers and phishers target Christmas shoppers

Online shoppers and email users face heightened festive risks.
Online shoppers and email users face heightened festive risks. With the annual Christmas spending frenzy fast approaching, phishing is as usual on the rise, targeting inexperienced… https://www.virusbulletin.com/blog/2006/11/spammers-and-phishers-target-christmas-shoppers/

Zango still in spyware game

Dodgy tactics continue despite ruling.
Dodgy tactics continue despite ruling. Several researchers have complained that adware-fuelled media company Zango continues to use deceptive practices, despite the recent case… https://www.virusbulletin.com/blog/2006/11/zango-still-spyware-game/

ISS to integrate BitDefender

Big Blue adds anti-virus and anti-spyware to desktop security product.
Big Blue adds anti-virus and anti-spyware to desktop security product.IBM announced yesterday that its Internet Security Systems (ISS) subsidiary will be including anti-virus and… https://www.virusbulletin.com/blog/2006/11/iss-integrate-bitdefender/

Trojan planted on Chinese banking site

Backdoor dropper sneaked onto bank card operator's servers.
Backdoor dropper sneaked onto bank card operator's servers. News sources in China are reporting that the website of China UnionPay, a China-wide cross-bank credit card service used… https://www.virusbulletin.com/blog/2006/11/trojan-planted-chinese-banking-site/

UK toughens law against DoS, tools

New law ups penalties for hacking, but could threaten security research.
New law ups penalties for hacking, but could threaten security research. The UK 'Police and Justice Bill 2006', introduced into UK law this month, has drawn some approval for its… https://www.virusbulletin.com/blog/2006/11/uk-toughens-law-against-dos-tools/

Worm targets Real Media files

McAfee warns of dangerous movies and music.
McAfee warns of dangerous movies and music. Researchers at McAfee's Avert Labs have warned of a new worm, dubbed 'W32/Realor', which doctors the contents of Real Media files… https://www.virusbulletin.com/blog/2006/11/worm-targets-real-media-files/

Patch Tuesday vulnerability exploited

Attack developed within two days of disclosure.
Attack developed within two days of disclosure. The Workstation Service flaw announced and patched on Tuesday, one of the most critical vulnerabilities covered by Microsoft's… https://www.virusbulletin.com/blog/2006/11/patch-tuesday-vulnerability-exploited/

Panda vulnerabilities revealed

ActiveScan remote access holes patched, details disclosed.
ActiveScan remote access holes patched, details disclosed. Several vulnerabilites have been found in Panda Software's ActiveScan product. The problems could be used to initiate a… https://www.virusbulletin.com/blog/2006/11/panda-vulnerabilities-revealed/

Firefox anti-phishing better, says Mozilla

Browser phishing filters battle for supremacy.
Browser phishing filters battle for supremacy.Mozilla has released results of an independently run test of phishing filters, in which its latest product, Firefox 2.0, is compared… https://www.virusbulletin.com/blog/2006/11/firefox-anti-phishing-better-says-mozilla/

AVG, F-PROT suffer vulnerabilities

Reports of buffer overflows and other problems.
Reports of buffer overflows and other problems. A series of vulnerabilities have been discovered and patched in Grisoft's AVG Antivirus. Several issues with archive handling could… https://www.virusbulletin.com/blog/2006/11/avg-f-prot-suffer-vulnerabilities/

Mobile firewalls released

Trend, F-Secure add extra layer to smartphone security.
Trend, F-Secure add extra layer to smartphone security. Two new products have been unveiled this week offering firewall protection for smartphones and PDAs, with both Trend Micro… https://www.virusbulletin.com/blog/2006/11/mobile-firewalls-released/

Forefront Client reaches beta

Microsoft corporate security product goes into public test.
Microsoft corporate security product goes into public test.Microsoft's long-awaited corporate security suite, Forefront Client Security, has been released to public beta. The new… https://www.virusbulletin.com/blog/2006/11/forefront-client-reaches-beta/

Courts shut down spyware pushers

Media Motor operation frozen by FTC case.
Media Motor operation frozen by FTC case. The US Federal Trade Commission (FTC) has brought a case against the spyware operation Media Motor, with the company and its affiliates… https://www.virusbulletin.com/blog/2006/11/courts-shut-down-spyware-pushers/

Russians dominate spammer top ten

Half of ten worst spammers from former USSR.
Half of ten worst spammers from former USSR. This week's list of the top ten 'worst spammers and spam gangs', released by spam fighters Spamhaus, is dominated by eastern Europeans,… https://www.virusbulletin.com/blog/2006/11/russians-dominate-spammer-top-ten/

« Previous 1...9091929394...120 Next »