VB Blog

Tizi Android malware highlights the importance of security patches for high-risk users

Posted by Martijn Grooten on Nov 28, 2017

Researchers from Google have taken down 'Tizi', an Android malware family, that used nine already patched vulnerabilities to obtain root on infected devices.

Posted by Martijn Grooten on Nov 27, 2017

Next week, Virus Bulletin researchers will be attending the AMTSO meeting and AVAR conference in Beijing, China, as well as the 5th edition of the Botconf conference in Montpellier, France.

Posted by Martijn Grooten on Nov 24, 2017

Today, we publish the video of the VB2017 presentation by ESET researcher Filip Kafka, who looked at recent changes in the FinFisher government malware, including its infection vectors.

Posted by Martijn Grooten on Nov 23, 2017

We look back at the VB2016 presentation by Adrian Sanabria on the state of endpoint security, both now and in the future.

Posted by Martijn Grooten on Nov 22, 2017

At VB2017 in Madrid, Cisco Umbrella (OpenDNS) researchers Dhia Mahjoub and David Rodriguez presented a new approach to detecting infected machines using graphs to detect botnet traffic at scale. Today we publish both Dhia and David's paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 21, 2017

Firefox developer Mozilla has announced that, as of version 59 of the browser, many kinds of data URIs, which provide a way to create "domainless web content", will not be rendered in the browser, thus making this trick - used in various phishing campaigns - a lot less attractive.

Posted by Martijn Grooten on Nov 16, 2017

Virus Bulletin ran a standalone test on FireEye's Endpoint Security solution.

Posted by Martijn Grooten on Nov 13, 2017

Jelena Milosevic, a nurse with a passion for IT security, is uniquely placed to witness poor security practices in the health care sector, and to fully understand the consequences. Today, we publish the recording of a presentation given by Jelena at VB2017 in Madrid, in which she shared her inside view of security in hospitals.

Posted by Martijn Grooten on Nov 9, 2017

Both bad news (all devices were pwnd) and good news (pwning is increasingly difficult) came from the most recent mobile Pwn2Own competition. But the practical security risks that come with using mobile phones have little to do with vulnerabilities.

Posted by Martijn Grooten on Nov 8, 2017

At VB2017 in Madrid, industry veteran and ESET Senior Research Fellow David Harley presented a paper on the state of security software testing. Today we publish David's paper in both HTML and PDF format.

Previous1...2728293031...215Next

Search blog

Study promotes challenge-response for anti-spam

Interactive system rated best blocker in questioned survey.
Interactive system rated best blocker in questioned survey. A study of anti-spam systems, using a bespoke scale to rate protection offered, has found the challenge-response method… https://www.virusbulletin.com/blog/2007/07/study-promotes-challenge-response-anti-spam/

Ransomware returns

Trojan hides personal data, demands money with menaces.
Trojan hides personal data, demands money with menaces. A new version of a ransomware trojan has been sighted, recalling the warnings of two years ago when similar items first… https://www.virusbulletin.com/blog/2007/07/ransomware-returns/

Microsoft files adware system patent

Ads could be targeted at users based on local system data.
Ads could be targeted at users based on local system data.Microsoft has filed a patent application for a new method of targeting advertising, using information on the contents of a… https://www.virusbulletin.com/blog/2007/07/microsoft-files-adware-system-patent/

MessageLabs may be next takeover target

Managed services provider thought ripe for acquisition.
Managed services provider thought ripe for acquisition. Managed security specialist MessageLabs has been labelled a likely candidate for takeover by one of the industry giants, in… https://www.virusbulletin.com/blog/2007/07/messagelabs-may-be-next-takeover-target/

Security industry future looks solid, say analysts

Reports predict revenues will continue rising.
Reports predict revenues will continue rising. Analyst firm Global Industry Analysts (GIA) has released its latest report on the future of the IT security market, predicting… https://www.virusbulletin.com/blog/2007/07/security-industry-future-looks-solid-say-analysts/

Sony sues maker of MediaMax DRM system

CD protection developer accused of damaging Sony name.
CD protection developer accused of damaging Sony name.Sony BMG, the division of the Sony group embroiled in a long-running scandal after releasing a number of CDs using suspect… https://www.virusbulletin.com/blog/2007/07/sony-sues-maker-mediamax-drm-system/

Japan to tighten spam laws

Proposals to further restrict email and phone spamming.
Proposals to further restrict email and phone spamming. The Japanese Internal Affairs and Communications Ministry is planning a series of improvements to current anti-spam… https://www.virusbulletin.com/blog/2007/07/japan-tighten-spam-laws/

26 phishing arrests in Italy

Police swoop on Poste Italiane spam scam gangs.
Police swoop on Poste Italiane spam scam gangs. In a first for Italy, the Guardia Di Finanza has made 26 arrests from two separate groups of phishing fraudsters, in the culmination… https://www.virusbulletin.com/blog/2007/07/26-phishing-arrests-italy/

Symantec, AVG suffer problems

Vulnerabilities and false positives strike major products.
Vulnerabilities and false positives strike major products.Symantec users have been warned of some serious issues with archive handling, across a wide range of software produced by… https://www.virusbulletin.com/blog/2007/07/symantec-avg-suffer-problems/

Microsoft opens security 'portal'

New site carries prevalence data, updates and malware resources.
New site carries prevalence data, updates and malware resources. Security teams at Microsoft have been busy this week, with the full unveiling of the Microsoft Malware Protection… https://www.virusbulletin.com/blog/2007/07/microsoft-opens-security-portal/

Controversy over IE-to-Firefox exploit

MS and Mozilla in row over blame for cross-browser attack.
MS and Mozilla in row over blame for cross-browser attack. An exploit which involves browsing to a malicious website using Internet Explorer, but then launches an attack via a… https://www.virusbulletin.com/blog/2007/07/controversy-over-ie-firefox-exploit/

7 flaws fixed in July Patch Tuesday release

Critical patches issued for Excel, Active Directory and .NET.
Critical patches issued for Excel, Active Directory and .NET.Microsoft has released a total of seven patches in its monthly 'Patch Tuesday' security update, with three of the… https://www.virusbulletin.com/blog/2007/07/7-flaws-fixed-july-patch-tuesday-release/

SEC brings case against pump-and-dump spammers

Scam spotted after spammed mail sent to SEC lawyer.
Scam spotted after spammed mail sent to SEC lawyer. Two men from Texas have been charged with a range of spam and fraud offences after a 20-month campaign using botnets to spam… https://www.virusbulletin.com/blog/2007/07/sec-brings-case-against-pump-and-dump-spammers/

Spoof Spamhaus ads spammed out

Mail campaign claims to promote spam fighters.
Mail campaign claims to promote spam fighters. Spam-fighting organisation Spamhaus has been subjected to an attack on its reputation this week, with a sizeable campaign of spams… https://www.virusbulletin.com/blog/2007/07/spoof-spamhaus-ads-spammed-out/

Fake malware infection alerts spammed out

Latest spam run masquerades as malware warning and fix.
Latest spam run masquerades as malware warning and fix. The group behind last week's Fourth of July spams are thought to be behind another campaign this week, with messages… https://www.virusbulletin.com/blog/2007/07/fake-malware-infection-alerts-spammed-out/

Google buys Postini

Managed security service snapped up by giant.
Managed security service snapped up by giant. Ever-expanding web giant Google has continued its growth into both security and software-as-service spheres with the $625 million… https://www.virusbulletin.com/blog/2007/07/google-buys-postini/

Trojan using webmail to send spam

Captcha systems possibly cracked to automate account creation.
Captcha systems possibly cracked to automate account creation.BitDefender has reported a new trojan attempting to bypass security measures on leading webmail systems Hotmail and… https://www.virusbulletin.com/blog/2007/07/trojan-using-webmail-send-spam/

Kaspersky sues Rising

Feuding AV firms to fight it out in court.
Feuding AV firms to fight it out in court.Kaspersky's Chinese subsidiary has brought a court case against local rival Rising, after an escalating war of words between the two… https://www.virusbulletin.com/blog/2007/07/kaspersky-sues-rising/

Battle over Blackberry spyware threat

Spy tool for popular device claims to be legitimate.
Spy tool for popular device claims to be legitimate. The expansion of the FlexiSpy mobile device snooping software, originally available only for the Symbian platform but with… https://www.virusbulletin.com/blog/2007/07/battle-over-blackberry-spyware-threat/

Fourth of July targeted by trojan spam

Celebration card emails carry links to malware.
Celebration card emails carry links to malware. A further wave of greetings-card spam has been widely seeded, in the wake of considerable Storm Worm activity in the last week, with… https://www.virusbulletin.com/blog/2007/07/fourth-july-targeted-trojan-spam/

« Previous 1...8081828384...120 Next »