VB Blog

VB2019 presentation: Attor: spy platform with curious GSM fingerprinting

Posted by   Virus Bulletin on   Feb 11, 2020

Attor is a newly discovered cyber-espionage platform, use of which dates back to at least 2014 and which focuses on diplomatic missions and governmental institutions. Details of Attor were presented at VB2019 in London by ESET researcher Zuzana Hromcová. Today we release the recording of Zuzana's presentation.

Read more  

Why we encourage newcomers and seasoned presenters alike to submit a paper for VB2020

Posted by   Virus Bulletin on   Feb 6, 2020

With the call for papers for VB2020 currently open, we explain why, whether you've never presented before or you're a conference circuit veteran, if you have some interesting research to share with the community we want to hear from you!

Read more  

VB2019 paper: The cake is a lie! Uncovering the secret world of malware-like cheats in video games

Posted by   Helen Martin on   Feb 5, 2020

At VB2019 in London, Kaspersky researcher Santiago Pontiroli presented a paper on the growing illegal economy around video game cheats and its parallels with the malware industry. Today we publish both Santiago's paper and the recording of his presentation.

Read more  

VB2019 paper: Rich headers: leveraging the mysterious artifact of the PE format

Posted by   Virus Bulletin on   Jan 31, 2020

In a paper presented at VB2019 in London, ESET researchers Peter Kálnai and Michal Poslušný discussed the subject of rich headers and how it can be useful in malware research. Today we publish both their paper and the recording of their presentation.

Read more  

VB2019 paper: Medical IoT for diabetes and cybercrime

Posted by   Helen Martin on   Jan 28, 2020

At VB2019 in London, Fortinet researcher Axelle Apvrille presented a paper co-written with Aamir Lakhani that looked at the threats faced by those who use medical IoT devices to help manage their diabetes. Today we publish the researchers' paper, as well as the recording of Axelle's presentation.

Read more  

VB2019 paper: Spoofing in the reeds with Rietspoof

Posted by   Virus Bulletin on   Jan 24, 2020

In a VB2019 paper Avast researchers Jan Sirmer, Luigino Camastra and Adolf Středa revealed full details of the Rietspoof malware. Today we publish their paper and the recording of the presentation given by Jan and Luigino in London.

Read more  

New paper: Behind the scenes of GandCrab's operation

Posted by   Helen Martin on   Jan 20, 2020

The GandCrab ransomware regularly updated itself to newer versions to stay ahead of decryptors released by security researchers, and regularly included taunts, jokes and references to security organizations in its code. In a new paper, the AhnLab Security Analysis Team reveal the full details of the battle that went on between GandCrab and AhnLab.

Read more  

VB2019 paper: King of the hill: nation-state counterintelligence for victim deconfliction

Posted by   Virus Bulletin on   Jan 16, 2020

At VB2019 Juan Andres Guerrero-Saade looked at nation-state actors using threat intelligence for victim deconfliction. Today we publish both his paper and the recording of his presentation.

Read more  

The VB2020 call for papers - how it works

Posted by   Virus Bulletin on   Jan 14, 2020

With the VB2020 Call for Papers now open, we explain how the selection procedure works, which may help you during your abstract submission.

Read more  

VB2019 presentation: Targeted attacks through ISPs

Posted by   Virus Bulletin on   Jan 13, 2020

In 2019 we saw a rise in the number of targeted malware infections spread via ISPs and service providers. In a last-minute paper presented at VB2019 in London, Kaspersky researcher Denis Legezo discussed the details of a number of such cases. Today we release the recording of Denis' presentation.

Read more  

Search blog

Same old, same old

Virus writers plead stupidity...
Virus writers plead stupidity... Just days after his creation made its first appearance in the Wild, the suspected author of the Iraqi war-themed W32/Ganda worm has been tracked… https://www.virusbulletin.com/blog/2003/04/same-old-same-old/

April

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2003/04/

Security in the classroom

Microsoft supporting secure code initiative at University of Leeds
Microsoft supporting secure code initiative at University of Leeds Microsoft seems to be taking security education seriously these days. The software company has pledged support -… https://www.virusbulletin.com/blog/2003/04/security-classroom/

Lighter sentences for virus writers?

A US report claims that sentences for computer-related crimes are too harsh.
A US report claims that sentences for computer-related crimes are too harsh. The USA's largest group of defence lawyers has backed a report claiming that sentences for… https://www.virusbulletin.com/blog/2003/03/lighter-sentences-virus-writers/

March

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2003/03/

Anti-virus for Lindows

Lindows teams up with Central Command to sell Linux anti-virus - a step in the right direction, but perhaps not far enough...
Lindows teams up with Central Command to sell Linux anti-virus - a step in the right direction, but perhaps not far enough... Of the Linux distributions, Lindows is possibly the… https://www.virusbulletin.com/blog/2003/02/anti-virus-lindows/

Symantec press release backfires

Watch out for your marketing department...
Watch out for your marketing department... It makes a change to be reporting on the under-hyping of a virus threat, rather than the usual story of anti-virus companies… https://www.virusbulletin.com/blog/2003/02/symantec-press-release-backfires/

VB2003 programme announced

Details of the VB2003 conference programme announced ...
Details of the VB2003 conference programme announced ... Details of the VB2003 conference programme have been announced and are available online.VB2003 will host more than 30… https://www.virusbulletin.com/blog/2003/02/programme-announced/

Calling all speakers

Submit your papers for VB2003 now!
Submit your papers for VB2003 now! Virus Bulletin has extended the deadline for submissions from those wishing to present at VB2003, the Thirteenth Virus Bulletin International… https://www.virusbulletin.com/blog/2003/02/calling-all-speakers/

Standing up for free speech

NAI lands itself a hefty fine...
NAI lands itself a hefty fine... Network Associates Inc. (NAI) has landed itself a hefty fine to start the new year after a New York court ruled against the company last month in… https://www.virusbulletin.com/blog/2003/02/standing-free-speech/

February

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2003/02/

Two years for three viruses

Author of Gokar, Redesi and Admirer jailed for two years.
Author of Gokar, Redesi and Admirer jailed for two years. Simon Vallor, a 22-year-old web designer from Wales, who pleaded guilty to creating and distributing a trio of… https://www.virusbulletin.com/blog/2003/02/two-years-three-viruses/

Virus writers get a helping hand

Two organizations send viruses to mailing list subscribers...
Two organizations send viruses to mailing list subscribers... Despite the recent conviction of Welsh Wiccan Simon Vallor, for writing and distributing three mass-mailing viruses,… https://www.virusbulletin.com/blog/2003/01/virus-writers-get-helping-hand/

W32/B(e)agle

VB predicts: 'Beagle's bark worse than its bite', 'Beware of Bagles in the morning', 'The Beagle has landed', ad nauseam.
VB predicts: 'Beagle's bark worse than its bite', 'Beware of Bagles in the morning', 'The Beagle has landed', ad nauseam. At first glance, W32/Bagle.A is not a particularly… https://www.virusbulletin.com/blog/2003/01/w32-b-e-agle/

News summary...

Trend estimates $5b virus damage in 2003, monoculture blues, Symantec 'reels from week of mishaps', more MiMail, and more...
Trend estimates $5b virus damage in 2003, monoculture blues, Symantec 'reels from week of mishaps', more MiMail, and more... Trend Micro kicks off today's news summary with an… https://www.virusbulletin.com/blog/2003/01/news-summary/

RIAA worm

RIAA allegedly buying worms to stop P2P piracy
RIAA allegedly buying worms to stop P2P piracy It would appear Gobbles Security has done it again, only this time under the guidance of everyone's favourite dark corporation, the… https://www.virusbulletin.com/blog/2003/01/riaa-worm/

Microsoft rights management

What digital and information rights management may mean for the industry.
What digital and information rights management may mean for the industry. Microsoft is frequently accused of being a hive of lax security, but the company has been very public… https://www.virusbulletin.com/blog/2003/01/microsoft-rights-management/

Anti anti anti

NAI buys DeerSoft Inc., manufacturer of SpamAssassin Pro - confusion assured ...
NAI buys DeerSoft Inc., manufacturer of SpamAssassin Pro - confusion assured ... In what seems certain to be a growing trend in the anti-virus industry, and following in the… https://www.virusbulletin.com/blog/2003/01/anti-anti-anti/

Lessons to be Learned

Proving that mistakes can happen to us all, it seems that W32/Winevar.A was not the only virus 'story' to have arisen from the AVAR 2002 conference in Korea.
Proving that mistakes can happen to us all, it seems that W32/Winevar.A was not the only virus 'story' to have arisen from the AVAR 2002 conference in Korea. It seems that… https://www.virusbulletin.com/blog/2003/01/lessons-be-learned/

A Happy New Year

In a cheery end-of-year message, mi2g has made ten security predictions for 2003.
In a cheery end-of-year message, mi2g has made ten security predictions for 2003. In a cheery end-of-year message, mi2g has made ten security predictions for 2003. Amongst… https://www.virusbulletin.com/blog/2003/01/happy-new-year/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.