VB Blog

VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors

Posted by Martijn Grooten on Jan 7, 2019

Today, we publish the VB2018 paper by Chronicle researcher Juan Andres Guerrero-Saade, who argues we should change the way we talk about APT actors.

Posted by Martijn Grooten on Dec 19, 2018

VB Editor Martijn Grooten reviews Charles Arthur's Cyber Wars, which looks at seven prominent hacks and attacks, and the lessons we can learn from them.

Posted by Martijn Grooten on Dec 14, 2018

At VB2018 Sophos researcher Gábor Szappanos provided a detailed overview of Office exploit builders, and looked in particular at the widely exploited CVE-2017-0199. Today we publish his paper and release the video of his presentation.

Posted by Martijn Grooten on Dec 12, 2018

Today, we release the video of the VB2018 presentation by Check Point researcher Aseel Kayal, who connected the various dots relating to campaigns by the APT-C-23 threat group.

Posted by Martijn Grooten on Dec 11, 2018

VB calls on organisations and individuals involved in threat intelligence from around the world to participate in next year's Virus Bulletin conference.

Posted by Martijn Grooten on Dec 7, 2018

Today, we publish the VB2018 paper by Qihoo 360 researchers Ya Liu and Hui Wang, on extracting data from variants of the Mirai botnet to classify and track variants.

Posted by Martijn Grooten on Dec 6, 2018

2018 has seen an increase in the variety of botnets living on the Internet of Things - such as Hide'N'Seek, which is notable for its use of peer-to-peer for command-and-control communication. Today, we publish the VB2018 paper by Bitdefender researchers Adrian Șendroiu and Vladimir Diaconescu, who studied the Hide'N'Seek IoT botnet. We also release the recording of their presentation.

Posted by Martijn Grooten on Dec 4, 2018

In a new paper, Avast researchers Jan Sirmer and Adolf Streda look at how a spam campaign sent via the Necurs botnet was delivering the Flawed Ammyy RAT. As well as publishing the paper, we have also released the video of the reseachers' VB2018 presentation on the same topic.

Posted by Martijn Grooten on Nov 29, 2018

Today we have published the video of the VB2018 presentation by Andrew Brandt (Sophos) on the SamSam ransomware, which became hot news following the indictment of its two suspected authors yesterday.

Posted by Martijn Grooten on Nov 28, 2018

Today, we publish the video of the VB2018 presentation by CitizenLab researchers Masashi Nishihata and John Scott Railton, on threats faced by civil society.

Previous1...1415161718...215Next

Search blog

TJX hack thought biggest ever

Over 45 million card numbers gathered in massive breach.
Over 45 million card numbers gathered in massive breach. A report into a security breach at major US retailer TJX has revealed a lengthy and sophisticated attack which scooped vast… https://www.virusbulletin.com/blog/2007/03/tjx-hack-thought-biggest-ever/

Fujacks writer's removal tool slated

Virus creator's anti-virus not up to scratch, says Symantec.
Virus creator's anti-virus not up to scratch, says Symantec. A cleanup tool created by the writer of the Fujacks virus, also known as the 'Panda burning incense' virus in reference… https://www.virusbulletin.com/blog/2007/03/fujacks-writer-s-removal-tool-slated/

Another Windows zero-day exploit seen in wild

Trojans sneaking in through animated cursor flaw.
Trojans sneaking in through animated cursor flaw. A vulnerability has been discovered in the handling of .ani files, used for animated cursors on web pages and in HTML emails, and… https://www.virusbulletin.com/blog/2007/03/another-windows-zero-day-exploit-seen-wild/

Woolworths to join UK AV market

Retail chain set to issue own-label software range.
Retail chain set to issue own-label software range. Major UK high street retailer Woolworths is set to follow supermarket giant Tesco in releasing its own-brand range of software… https://www.virusbulletin.com/blog/2007/03/woolworths-join-uk-av-market/

Malware danger and profitability rising

Symantec, FBI reports show general increases in money-driven threats.
Symantec, FBI reports show general increases in money-driven threats. Two major new reports on computer security issues have shown a steady rise in just about every aspect of… https://www.virusbulletin.com/blog/2007/03/malware-danger-and-profitability-rising/

Huge haul of ID data stolen by trojan

Smart Russian spyware gathered info 'unnoticed' for 54 days.
Smart Russian spyware gathered info 'unnoticed' for 54 days. According to researchers at SecureWorks, a sophisticated trojan which spread through browser exploits, harvested… https://www.virusbulletin.com/blog/2007/03/huge-haul-id-data-stolen-trojan/

Search, link and trackback spam flooding web

Blogs, social sites and search results rivaling email for junk ads.
Blogs, social sites and search results rivaling email for junk ads. Email, long the most popular and lucrative means of getting advertising in front of computer users, is being… https://www.virusbulletin.com/blog/2007/03/search-link-and-trackback-spam-flooding-web/

RSA to provide trojan removal services

Anti-fraud system provides avenue for reporting and stopping targeted attacks.
Anti-fraud system provides avenue for reporting and stopping targeted attacks. Security firm RSA has announced a new system to block spyware and phishing fraud, by taking down… https://www.virusbulletin.com/blog/2007/03/rsa-provide-trojan-removal-services/

MS admits serious problems with OneCare

Detection failures and other issues confirmed, improvements promised.
Detection failures and other issues confirmed, improvements promised.Microsoft's Windows Live OneCare, hit by a series of public relations difficulties recently with failures in… https://www.virusbulletin.com/blog/2007/03/ms-admits-serious-problems-onecare/

No fanfare for Windows Server 2003 SP2

Major update release emerges in mysterious silence.
Major update release emerges in mysterious silence.Microsoft has released a new service pack for its Windows Server 2003 platform, almost entirely without warning or promotion. The… https://www.virusbulletin.com/blog/2007/03/no-fanfare-windows-server-2003-sp2/

Yet more vulnerabilities in major security products

Serious McAfee buffer overflow flaws join yet another Trend UPX issue.
Serious McAfee buffer overflow flaws join yet another Trend UPX issue. Several vulnerabilities have been found in McAfee's ePolicy Orchestrator management tool, which could be… https://www.virusbulletin.com/blog/2007/03/yet-more-vulnerabilities-major-security-products/

UK bankers show 44% rise in online theft

APACS study records major increase in phishing fraud earnings.
APACS study records major increase in phishing fraud earnings. UK banking payments body APACS has released its latest figures for credit card and other types of banking fraud,… https://www.virusbulletin.com/blog/2007/03/uk-bankers-show-44-rise-online-theft/

Trend takes over HijackThis

Popular free spyware-spotting tool acquired by security giant.
Popular free spyware-spotting tool acquired by security giant.Trend Micro has announced the acquisition of HijackThis, the popular freely available tool designed to reveal hidden… https://www.virusbulletin.com/blog/2007/03/trend-takes-over-hijackthis/

OneCare causing Outlook havoc

Old mailbox deletion bug resurfaces, upsets users
Old mailbox deletion bug resurfaces, upsets usersMicrosoft's Windows Live OneCare has been the cause of considerable frustration to its users recently, with an issue with the… https://www.virusbulletin.com/blog/2007/03/onecare-causing-outlook-havoc/

March Patch Tuesday cancelled

MS announces no security patches this month.
MS announces no security patches this month. With several known vulnerabilities still affecting Windows and other products, Microsoft has announced that there will be no security… https://www.virusbulletin.com/blog/2007/03/march-patch-tuesday-cancelled/

Report on TLD DNS DDoS attack released

Fact sheet on web root server bombardment published by ICANN.
Fact sheet on web root server bombardment published by ICANN. The Internet Corporation for Assigned Names and Numbers (ICANN), the body responsible for controlling the DNS system… https://www.virusbulletin.com/blog/2007/03/report-tld-dns-ddos-attack-released/

SEC halts trading in spammed stocks

Share trading in 35 pumped and dumped companies suspended.
Share trading in 35 pumped and dumped companies suspended. The US Securities and Exchange Commission (SEC) announced yesterday that it had suspended trading in the stocks of 35… https://www.virusbulletin.com/blog/2007/03/sec-halts-trading-spammed-stocks/

New Zealand passes anti-spam law

As bulk emailing is regulated in NZ, Canada hears calls for similar laws.
As bulk emailing is regulated in NZ, Canada hears calls for similar laws. The New Zealand government announced last week the final passing of a law to control spam originating in… https://www.virusbulletin.com/blog/2007/03/new-zealand-passes-anti-spam-law/

Gromozon hijacks Italian MSN searches

Link bombing pushes blended spyware attack to top of popular search results.
Link bombing pushes blended spyware attack to top of popular search results. The gang behind the sophisticated Gromozon blended threat, also known as LinkOptimizer, is thought to… https://www.virusbulletin.com/blog/2007/03/gromozon-hijacks-italian-msn-searches/

OneCare fails another detection test

Microsoft product found not up to scratch in AV-Comparatives review.
Microsoft product found not up to scratch in AV-Comparatives review. Respected testing organisation AV-Comparatives has released the results of its latest in-depth test of… https://www.virusbulletin.com/blog/2007/03/onecare-fails-another-detection-test/

« Previous 1...8687888990...120 Next »