VB Blog

Latest Virus Bulletin report shows the difference web security products make

Posted by Martijn Grooten on Nov 27, 2018

The latest Virus Bulletin web security report sees Kaspersky, Trustwave and Fortinet all achieve VBWeb certification, but also see some products struggle with the new Fallout exploit kit.

Posted by Martijn Grooten on Nov 26, 2018

Subscribe to the re-launched Virus Bulletin eNews Newsletter to receive regular updates on the latest threat intelligence sources directly in your inbox.

Posted by Martijn Grooten on Nov 22, 2018

The Lazarus Group, which became (in)famous through the Sony Pictures breach and the WannaCry attack, is still very much active and targeting financial institutions around the world. Today we publish the VB2018 paper by AhnLab researcher Minseok (Jacky) Cha on the group's activities.

Posted by Martijn Grooten on Nov 16, 2018

Today, we have published the video of a VB2018 presentation by Kaspersky Lab researchers Kurt Baumgartner and Mike Scott, who looked at the latest activity of the Turla group.

Posted by Martijn Grooten on Nov 13, 2018

Today we publish the video of the VB2018 presentation by Google researcher Lukasz Siewierski on the Triada Android malware and Google's work with OEMs to remove it from infected devices.

Posted by Martijn Grooten on Nov 6, 2018

Today, we publish the VB2018 paper by Masarah Paquet-Clouston (GoSecure) who looked at the supply chain behind social media fraud.

Posted by Virus Bulletin on Nov 1, 2018

Today, we publish the VB2018 paper from Saher Naumaan (BAE Systems) who looks at malware variants that contain a wiper functionality. We also publish the recording of her presentation.

Posted by Martijn Grooten on Oct 31, 2018

The infamous Emotet trojan has added the capability to steal full email bodies from infected machines, opening the possibilities for more targeted spam and phishing campaigns.

Posted by Martijn Grooten on Oct 30, 2018

Cisco Talos researchers Paul Rascagnères and Warren Mercer were among the first to write about the Olympic Destroyer, the malware that targeted the 2018 PyeongChang Winter Olympic Games. Today, we publish the paper they presented at VB2018 about the malware; we also publish the video of their VB2018 presentation.

Posted by Martijn Grooten on Oct 26, 2018

Today, we publish the VB2018 paper by Malwarebytes researcher Jérôme Segura, in which he details the shift from exploit kits to drive-by mining. We also publish the video of his VB2018 presentation.

Previous1...1516171819...215Next

Search blog

Vista fails to reassure web users

50% of users don't believe Vista has made the Internet any safer.
50% of users don't believe Vista has made the Internet any safer. According to a recent poll, 50% of visitors to the VB website do not believe that Windows Vista has made the… https://www.virusbulletin.com/blog/2007/12/vista-fails-reassure-web-users/

Yuletide greetings

Festive wishes.
Festive wishes. The members of the VB team extend their warm wishes to Virus Bulletin readers for a very happy holiday season and a healthy and prosperous new year. This Christmas… https://www.virusbulletin.com/blog/2007/12/yuletide-greetings/

Teenage botherder arrested in New Zealand

International cooperation also leads to eight arrests in the US.
International cooperation also leads to eight arrests in the US. Police in New Zealand have arrested an 18-year-old youth believed to be the herder of a botnet of 1.3 million… https://www.virusbulletin.com/blog/2007/11/teenage-botherder-arrested-new-zealand/

Webroot merges with UK managed service firm

Anti-spyware firm moves into SaaS arena
Anti-spyware firm moves into SaaS arena Anti-spyware specialist Webroot has announced a merger with UK-based software-as-a-service firm Email Systems, expanding its provisions… https://www.virusbulletin.com/blog/2007/11/webroot-merges-uk-managed-service-firm/

AVAR 2007 opens in Seoul

Asian and global malware experts gather to discuss latest trends
Asian and global malware experts gather to discuss latest trends The annual conference of the Association of anti Virus Asia Researchers (AVAR) has convened in the comfortable… https://www.virusbulletin.com/blog/2007/11/avar-2007-opens-seoul/

SANS issues vulnerability top 20

Annual study of security risks finds software and humans present dangers.
Annual study of security risks finds software and humans present dangers. The SANS Institute has released its annual survey of vulnerabilities putting computer systems and networks… https://www.virusbulletin.com/blog/2007/11/sans-issues-vulnerability-top-20/

Inconvenient content

Hackers include spammish content into Al Gore's website.
Hackers include spammish content into Al Gore's website. Hackers have managed to break into a website set up to promote Al Gore's film An Inconvenient Truth and include links to… https://www.virusbulletin.com/blog/2007/11/inconvenient-content/

QuickTime flaw could open Windows PCs to hackers

Firefox users most vulnerable; Internet Explorer users should be wary too.
Firefox users most vulnerable; Internet Explorer users should be wary too. Polish security researcher Krystian Kloskowski has published a proof-of-concept exploit for a… https://www.virusbulletin.com/blog/2007/11/quicktime-flaw-could-open-windows-pcs-hackers/

Five-year-old design flaw found in all Windows versions

Microsoft engineers spend Thanksgiving holidays writing patch.
Microsoft engineers spend Thanksgiving holidays writing patch. During the Kiwicon conference earlier this month, ethical hacker Beau Butler from New Zealand disclosed a design flaw… https://www.virusbulletin.com/blog/2007/11/five-year-old-design-flaw-found-all-windows-versions/

One in four consider online banking unsafe

Virus Bulletin finds that one in four users consider online banking to be unsafe, but manage their accounts online regardless, while 50% of users consider online banking to be risk free.
Virus Bulletin finds that one in four users consider online banking to be unsafe, but manage their accounts online regardless, while 50% of users consider online banking to be risk… https://www.virusbulletin.com/blog/2007/11/one-four-consider-online-banking-unsafe/

Pushy scamware ads served by DoubleClick

Advertising network provided ads for rogue security product.
Advertising network provided ads for rogue security product. Online advertising system DoubleClick, part of an ongoing acquisition attempt by Google, has allowed a wave of… https://www.virusbulletin.com/blog/2007/11/pushy-scamware-ads-served-doubleclick/

Two fixes released on lightweight Patch Tuesday

Monthly security update covers just couple of dangers.
Monthly security update covers just couple of dangers.Microsoft has released its monthly 'Patch Tuesday' security bulletin, with only two patches issued, one rated 'Important' and… https://www.virusbulletin.com/blog/2007/11/two-fixes-released-lightweight-patch-tuesday/

US botnet master confesses to crimes

Security consultant to plead guilty, could face heavy sentence.
Security consultant to plead guilty, could face heavy sentence. A Los Angeles man has agreed to plead guilty to several counts of fraud and unauthorised interfering with computer… https://www.virusbulletin.com/blog/2007/11/us-botnet-master-confesses-crimes/

Infected Seagate hard drives sold in Taiwan

External Maxtor disks shipped carrying autorun datastealer.
External Maxtor disks shipped carrying autorun datastealer. A shipment of Maxtor external hard drives, produced in Thailand by US-based Seagate and sold in Taiwan, has been found… https://www.virusbulletin.com/blog/2007/11/infected-seagate-hard-drives-sold-taiwan/

Phished Salesforce.com data used for phishing attacks

Password leak leads to major CRM customer data haul.
Password leak leads to major CRM customer data haul. A security breach at customer relationship management (CRM) firm Salesforce.com has led to a large-scale leak of confidential… https://www.virusbulletin.com/blog/2007/11/phished-salesforce-com-data-used-phishing-attacks/

Russian Business Network leaves Russia

Leading cybercrime hosting hub moves business to fresh pastures.
Leading cybercrime hosting hub moves business to fresh pastures. The notorious Russian Business Network (RBN), recently making headlines for the massive amounts of malicious and… https://www.virusbulletin.com/blog/2007/11/russian-business-network-leaves-russia/

Sophos announces plans to float

Listing on London Stock Exchange expected soon.
Listing on London Stock Exchange expected soon. The long-anticipated floatation of Sophos, one of the biggest privately owned security firms, has been announced this week, with the… https://www.virusbulletin.com/blog/2007/11/sophos-announces-plans-float/

Symantec joins data leak frenzy

Vontu purchase latest move in data protection trend.
Vontu purchase latest move in data protection trend.Symantec has announced the $350 million purchase of data leak prevention firm Vontu, following several similar moves by major… https://www.virusbulletin.com/blog/2007/11/symantec-joins-data-leak-frenzy/

LinkedIn providing open redirect

Lax website setup could be used to trick the unwary.
Lax website setup could be used to trick the unwary. Popular professional networking system LinkedIn has been allowing free redirects from its website, providing spammers and… https://www.virusbulletin.com/blog/2007/11/linkedin-providing-open-redirect/

Attempted virus fumbles attack on F-Secure

Flawed file-infector fails to frighten Finns.
Flawed file-infector fails to frighten Finns. A highly buggy intended virus has been found to include an attempt to launch a DDoS attack on the websites of Finnish security firm… https://www.virusbulletin.com/blog/2007/11/attempted-virus-fumbles-attack-f-secure/

« Previous 1...7475767778...120 Next »