VB Blog

VB2017 paper: Nine circles of Cerber

Posted by   Martijn Grooten on   Dec 15, 2017

Cerber is one of the major names in the world of ransomware, and last year, Check Point released a decryption service for the malware. Today, we publish a VB2017 paper by Check Point's Stanislav Skuratovich describing how the Cerber decryption tool worked; we have also uploaded the video of the presentation of this paper, by Or Eshed and Yaniv Balmas.

Read more  

Attack on Fox-IT shows how a DNS hijack can break multiple layers of security

Posted by   Martijn Grooten on   Dec 14, 2017

Dutch security firm Fox-IT deserves praise for being open about an attack on its client network. There are some important lessons to be learned about DNS security from its post-mortem.

Read more  

Throwback Thursday: BGP - from route hijacking to RPKI: how vulnerable is the Internet?

Posted by   Martijn Grooten on   Dec 14, 2017

For this week's Throwback Thursday, we look back at the video of a talk Level 3's Mike Benjamin gave at VB2016 in Denver, on BGP and BGP hijacks.

Read more  

Security Planner gives security advice based on your threat model

Posted by   Martijn Grooten on   Dec 13, 2017

Citizen Lab's Security Planner helps you improve your online safety, based on the specific threats you are facing.

Read more  

VB2017 video: Spora: the saga continues a.k.a. how to ruin your research in a week

Posted by   Martijn Grooten on   Dec 11, 2017

Today, we publish the video of the VB2017 presentation by Avast researcher Jakub Kroustek and his former colleague Előd Kironský, now at ESET, who told the story of Spora, one of of the most prominent ransomware families of 2017.

Read more  

VB2017 paper: Modern reconnaissance phase on APT – protection layer

Posted by   Martijn Grooten on   Dec 7, 2017

During recent research, Cisco Talos researchers observed the ways in which APT actors are evolving and how a reconnaissance phase is included in the infection vector in order to protect valuable zero-day exploits or malware frameworks. At VB2017 in Madrid, two of those researchers, Paul Rascagneres and Warren Mercer, presented a paper detailing five case studies that demonstrate how the infection vector is evolving. Today we publish both Paul and Warren's paper and the recording of their presentation.

Read more  

VB2017 paper: Peering into spam botnets

Posted by   Martijn Grooten on   Dec 1, 2017

At VB2017 in Madrid, CERT Poland researchers Maciej Kotowicz and Jarosław Jedynak presented a paper detailing their low-level analysis of five spam botnets. Today we publish their full paper.

Read more  

Throwback Thursday: Anti-malware testing undercover

Posted by   Martijn Grooten on   Nov 30, 2017

We look back at the VB2016 presentation by Righard Zwienenberg (ESET) and Luis Corrons (Panda Security), in which they discussed various issues relating to anti-malware testing.

Read more  

Virus Bulletin relaunches VB Security Jobs Market for both employers and job seekers

Posted by   Martijn Grooten on   Nov 30, 2017

As an independent body in the IT security industry, Virus Bulletin is in an ideal position to act as a global source of information both about jobs currently available in the field and about those candidates currently seeking to start or progress their career in the industry - which is why we have relaunched the VB Security Jobs Market.

Read more  

VB2017 paper: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server

Posted by   Martijn Grooten on   Nov 29, 2017

At VB2017 in Madrid, macOS malware researcher Patrick Wardle presented the details of a specific piece of Mac malware, FruitFly, which he analysed through a custom C&C server - a technique that will also be of interest for researchers of malware on other platforms. Today we publish both Patrick's paper and the recording of his presentation.

Read more  

Search blog

Facebook users warned of phishing dangers

41% happy to hand out personal data to strangers.
41% happy to hand out personal data to strangers. Research carried out by Sophos has found that 41% of users of hugely popular social networking site Facebook risk revealing… https://www.virusbulletin.com/blog/2007/08/facebook-users-warned-phishing-dangers/

Serious flaws patched in Norton 2006 products

Symantec users warned of vulnerabilities.
Symantec users warned of vulnerabilities. Users of Symantec's popular Norton AntiVirus and Norton Internet Security products are being urged to ensure they are running the latest… https://www.virusbulletin.com/blog/2007/08/serious-flaws-patched-norton-2006-products/

House of Lords warns of e-crime fears

Report recommends harder, smarter fight against online dangers.
Report recommends harder, smarter fight against online dangers. A major report by the Science and Technology Committee of the UK's House of Lords has found the internet to be rife… https://www.virusbulletin.com/blog/2007/08/house-lords-warns-e-crime-fears/

Pharmacy spammer gets 30 years

'Rizler' convicted on drugs, conspiracy and money laundering charges.
'Rizler' convicted on drugs, conspiracy and money laundering charges. Notorious pharmaceuticals spammer Christopher 'Rizler' Smith was sentenced to 30 years imprisonment last week,… https://www.virusbulletin.com/blog/2007/08/pharmacy-spammer-gets-30-years/

57% of spam scam sites hosted in US

Study investigates sites and servers linked to from spam.
Study investigates sites and servers linked to from spam. A detailed investigation into the distribution and usage of webservers to host the various 'scams' pushed by spam… https://www.virusbulletin.com/blog/2007/08/57-spam-scam-sites-hosted-us/

Kaspersky shuffles structure ready for IPO

Corporate reshaping prepares company for floatation.
Corporate reshaping prepares company for floatation. Russian security experts Kaspersky Lab have announced the setting up of a board of directors to run the company, as a step… https://www.virusbulletin.com/blog/2007/08/kaspersky-shuffles-structure-ready-ipo/

Worries of Storm forming massive botnet

DDoS danger looms as infection levels boom.
DDoS danger looms as infection levels boom. Repeated waves of the 'Storm' trojan attacks continue to be spammed out, with the latest using more eCards to hook in still more… https://www.virusbulletin.com/blog/2007/08/worries-storm-forming-massive-botnet/

Major pump-and-dump campaign floods inboxes

Heavy stock scam barrage ups spam levels 30%.
Heavy stock scam barrage ups spam levels 30%. A major PDF pump-and-dump campaign has been reported, with massive numbers of mails spammed out. According to spam watchers at Sophos,… https://www.virusbulletin.com/blog/2007/08/major-pump-and-dump-campaign-floods-inboxes/

AOL drops Kaspersky for McAfee

Web giant changes provider of free security software for members.
Web giant changes provider of free security software for members. Giant ISP and web services provider AOL is offering a free, special edition version of McAfee security software to… https://www.virusbulletin.com/blog/2007/08/aol-drops-kaspersky-mcafee/

Malware and phishing cost US users $7 billion in two years

Survey finds 1 in 4 risk of being hit by viruses, spyware and scams.
Survey finds 1 in 4 risk of being hit by viruses, spyware and scams. US consumer watchdog Consumer Reports has unveiled its annual 'State of the Net' study, showing serious numbers… https://www.virusbulletin.com/blog/2007/08/malware-and-phishing-cost-us-users-7-billion-two-years/

Spammers sentenced

Sentences for first US spammer to be convicted under CAN-SPAM and Australian mobile phone marketers.
Sentences for first US spammer to be convicted under CAN-SPAM and Australian mobile phone marketers. The first US spammer to be convicted under the 2003 CAN-SPAM Act was… https://www.virusbulletin.com/blog/2007/08/spammers-sentenced/

Worm trashes music files

MP3s targeted for destruction.
MP3s targeted for destruction. A new worm has been spotted attempting to delete .mp3 music files from infected systems and attached devices. Once a machine is compromised, the… https://www.virusbulletin.com/blog/2007/08/worm-trashes-music-files/

Trojans and worms hiding behind games

Mario latest lure to hook victims on malware.
Mario latest lure to hook victims on malware. Social engineering techniques used to trick computer users into running malicious code on their systems concentrate around simple… https://www.virusbulletin.com/blog/2007/08/trojans-and-worms-hiding-behind-games/

AV market growth and predictions

Analysts report on industry growth and predict future growth.
Analysts report on industry growth and predict future growth. According to analyst firm Frost & Sullivan, the worldwide market for anti-virus solutions reached US$4.68 billion in… https://www.virusbulletin.com/blog/2007/08/av-market-growth-and-predictions/

August

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2007/08/

Security for critical infrastructures

DHS details security requirements for automated control systems.
DHS details security requirements for automated control systems. The US Department of Homeland Security (DHS) has laid out a set of security requirements for automated control… https://www.virusbulletin.com/blog/2007/08/security-critical-infrastructures/

August issue of VB published

The August issue of Virus Bulletin is now available for subscribers to download.
The August issue of Virus Bulletin is now available for subscribers to download. The August 2007 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2007/08/august-issue-vb-published/

Series of products hit by vulnerabilities

Researcher finds flaws in ESET, Panda and Norman AV software.
Researcher finds flaws in ESET, Panda and Norman AV software. Researcher Sergio Alvarez has reported on vulnerabilities found in a string of anti-virus products this week, with… https://www.virusbulletin.com/blog/2007/07/series-products-hit-vulnerabilities/

Spreadsheets latest spam message carriers

XLS files follow PDFs as junk email ad vector.
XLS files follow PDFs as junk email ad vector. After the image spam deluge and the recent wave of spams carrying their messages in PDF files, the latest trend seems to be… https://www.virusbulletin.com/blog/2007/07/spreadsheets-latest-spam-message-carriers/

VB2007 - call for last-minute presentations

Virus Bulletin is seeking submissions from those wishing to present last-minute technical papers at VB2007 in Vienna.
Virus Bulletin is seeking submissions from those wishing to present last-minute technical papers at VB2007 in Vienna. Virus Bulletin is seeking submissions from those wishing to… https://www.virusbulletin.com/blog/2007/07/call-last-minute-presentations/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.