VB Blog

Malicious CCleaner update points to a major weakness in our infrastructure

Posted by Martijn Grooten on Sep 18, 2017

Researchers from Cisco Talos have found that a recent version of the widely used CCleaner tool installed malware on the machine.

Posted by Virus Bulletin on Sep 15, 2017

Though ransomware is far more profitable than using a compromised PC to mine bitcoins, the global distribution of malware means that there are many botnets for which mining is the most efficient way to extract money out of a PC.

Posted by Martijn Grooten on Sep 14, 2017

We preview the VB2017 paper by Julia Karpin and Anna Dorfman (F5 networks), in which they present a tool to decrypt encrypted parts of malware.

Posted by Martijn Grooten on Sep 13, 2017

We preview the VB2017 paper by Marco Romagna and Niek Jan van den Hout (The Hague University of Applied Sciences), in which they thoroughly analyse the motivations and modus operandy of hacktivists.

Posted by Martijn Grooten on Sep 13, 2017

Proof-of-concepts for bypasses of security products always sound scary, but how seriously should we take them? VB Editor Martijn Grooten lists three questions one should ask about any such bypass to determine how serious a threat it represents.

Posted by Martijn Grooten on Sep 12, 2017

Today, we announce two more 'Small Talks' for the VB2017 programme. In one of them, Neil Schwarzman will discuss the consequences of the GDPR for WHOIS and abuse research, while the other will be hosted by three members of EICAR, who will discuss its work on a trustworthiness strategy and minimum standard.

Posted by Martijn Grooten on Sep 11, 2017

From attacks on Ukraine's power grid to web shells, and from car hacking to ransomware: we announce the first nine 'last-minute' papers on the VB2017 programme.

Posted by Martijn Grooten on Sep 5, 2017

A lot of vulnerabilities that are discovered are never exploited in the wild. It is still important to patch them though.

Posted by Martijn Grooten on Sep 4, 2017

A security researcher found more than 700 million email addresses stored on a server used by a spam botnet, which gives us some insight into what the email lists used by spammers look like.

Posted by Martijn Grooten on Sep 4, 2017

We preview the VB2017 presentation by Tyrus Kamau (Euclid Security), who will talk about the state of cybersecurity in Africa, with a particular focus on his home country, Kenya.

Previous1...3031323334...215Next

Search blog

Botnet roasting on an open fire

FBI reports successes of operation Bot Roast; McAfee predicts cyber espionage for 2008.
FBI reports successes of operation Bot Roast; McAfee predicts cyber espionage for 2008. The FBI has revealed that eight individuals have been indicted, pled guilty or been… https://www.virusbulletin.com/blog/2007/12/botnet-roasting-open-fire/

December issue of VB published

The December issue of Virus Bulletin is now available for subscribers to download.
The December issue of Virus Bulletin is now available for subscribers to download. The December 2007 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2007/12/december-issue-vb-published/

Teenage botherder arrested in New Zealand

International cooperation also leads to eight arrests in the US.
International cooperation also leads to eight arrests in the US. Police in New Zealand have arrested an 18-year-old youth believed to be the herder of a botnet of 1.3 million… https://www.virusbulletin.com/blog/2007/11/teenage-botherder-arrested-new-zealand/

SANS issues vulnerability top 20

Annual study of security risks finds software and humans present dangers.
Annual study of security risks finds software and humans present dangers. The SANS Institute has released its annual survey of vulnerabilities putting computer systems and networks… https://www.virusbulletin.com/blog/2007/11/sans-issues-vulnerability-top-20/

Webroot merges with UK managed service firm

Anti-spyware firm moves into SaaS arena
Anti-spyware firm moves into SaaS arena Anti-spyware specialist Webroot has announced a merger with UK-based software-as-a-service firm Email Systems, expanding its provisions… https://www.virusbulletin.com/blog/2007/11/webroot-merges-uk-managed-service-firm/

AVAR 2007 opens in Seoul

Asian and global malware experts gather to discuss latest trends
Asian and global malware experts gather to discuss latest trends The annual conference of the Association of anti Virus Asia Researchers (AVAR) has convened in the comfortable… https://www.virusbulletin.com/blog/2007/11/avar-2007-opens-seoul/

Inconvenient content

Hackers include spammish content into Al Gore's website.
Hackers include spammish content into Al Gore's website. Hackers have managed to break into a website set up to promote Al Gore's film An Inconvenient Truth and include links to… https://www.virusbulletin.com/blog/2007/11/inconvenient-content/

QuickTime flaw could open Windows PCs to hackers

Firefox users most vulnerable; Internet Explorer users should be wary too.
Firefox users most vulnerable; Internet Explorer users should be wary too. Polish security researcher Krystian Kloskowski has published a proof-of-concept exploit for a… https://www.virusbulletin.com/blog/2007/11/quicktime-flaw-could-open-windows-pcs-hackers/

Five-year-old design flaw found in all Windows versions

Microsoft engineers spend Thanksgiving holidays writing patch.
Microsoft engineers spend Thanksgiving holidays writing patch. During the Kiwicon conference earlier this month, ethical hacker Beau Butler from New Zealand disclosed a design flaw… https://www.virusbulletin.com/blog/2007/11/five-year-old-design-flaw-found-all-windows-versions/

One in four consider online banking unsafe

Virus Bulletin finds that one in four users consider online banking to be unsafe, but manage their accounts online regardless, while 50% of users consider online banking to be risk free.
Virus Bulletin finds that one in four users consider online banking to be unsafe, but manage their accounts online regardless, while 50% of users consider online banking to be risk… https://www.virusbulletin.com/blog/2007/11/one-four-consider-online-banking-unsafe/

Two fixes released on lightweight Patch Tuesday

Monthly security update covers just couple of dangers.
Monthly security update covers just couple of dangers.Microsoft has released its monthly 'Patch Tuesday' security bulletin, with only two patches issued, one rated 'Important' and… https://www.virusbulletin.com/blog/2007/11/two-fixes-released-lightweight-patch-tuesday/

Pushy scamware ads served by DoubleClick

Advertising network provided ads for rogue security product.
Advertising network provided ads for rogue security product. Online advertising system DoubleClick, part of an ongoing acquisition attempt by Google, has allowed a wave of… https://www.virusbulletin.com/blog/2007/11/pushy-scamware-ads-served-doubleclick/

Infected Seagate hard drives sold in Taiwan

External Maxtor disks shipped carrying autorun datastealer.
External Maxtor disks shipped carrying autorun datastealer. A shipment of Maxtor external hard drives, produced in Thailand by US-based Seagate and sold in Taiwan, has been found… https://www.virusbulletin.com/blog/2007/11/infected-seagate-hard-drives-sold-taiwan/

US botnet master confesses to crimes

Security consultant to plead guilty, could face heavy sentence.
Security consultant to plead guilty, could face heavy sentence. A Los Angeles man has agreed to plead guilty to several counts of fraud and unauthorised interfering with computer… https://www.virusbulletin.com/blog/2007/11/us-botnet-master-confesses-crimes/

Russian Business Network leaves Russia

Leading cybercrime hosting hub moves business to fresh pastures.
Leading cybercrime hosting hub moves business to fresh pastures. The notorious Russian Business Network (RBN), recently making headlines for the massive amounts of malicious and… https://www.virusbulletin.com/blog/2007/11/russian-business-network-leaves-russia/

Phished Salesforce.com data used for phishing attacks

Password leak leads to major CRM customer data haul.
Password leak leads to major CRM customer data haul. A security breach at customer relationship management (CRM) firm Salesforce.com has led to a large-scale leak of confidential… https://www.virusbulletin.com/blog/2007/11/phished-salesforce-com-data-used-phishing-attacks/

Symantec joins data leak frenzy

Vontu purchase latest move in data protection trend.
Vontu purchase latest move in data protection trend.Symantec has announced the $350 million purchase of data leak prevention firm Vontu, following several similar moves by major… https://www.virusbulletin.com/blog/2007/11/symantec-joins-data-leak-frenzy/

LinkedIn providing open redirect

Lax website setup could be used to trick the unwary.
Lax website setup could be used to trick the unwary. Popular professional networking system LinkedIn has been allowing free redirects from its website, providing spammers and… https://www.virusbulletin.com/blog/2007/11/linkedin-providing-open-redirect/

Sophos announces plans to float

Listing on London Stock Exchange expected soon.
Listing on London Stock Exchange expected soon. The long-anticipated floatation of Sophos, one of the biggest privately owned security firms, has been announced this week, with the… https://www.virusbulletin.com/blog/2007/11/sophos-announces-plans-float/

Kaspersky teams up with Bit9

Whitelisting knowledgebase to be used in future security products.
Whitelisting knowledgebase to be used in future security products. A strategic partnership has been announced between Kaspersky Labs and application control specialist Bit9. The… https://www.virusbulletin.com/blog/2007/11/kaspersky-teams-bit9/

« Previous 1...7475767778...120 Next »