VB Blog

VB2020 localhost call for last minute papers: a unique opportunity

Posted by Virus Bulletin on Aug 10, 2020

Why VB2020 localhost presents a unique opportunity for you to share your research with security experts around the globe.

Posted by Virus Bulletin on Jul 31, 2020

The call for last-minute papers for VB2020 localhost is now open. Submit before 17 August to have your paper considered for one of the nine slots reserved for 'hot' research!

Posted by Virus Bulletin on Jul 29, 2020

Announcing VB2020 localhost: the carbon neutral, budget neutral VB conference!

Posted by Virus Bulletin on May 4, 2020

At VB2019, JPCERT/CC's Shusei Tomonaga and Tomoaki Tani presented a paper on attacks that exploit vulnerabilities in software used only in Japan, using malware that is unique to Japan. Today we publish both their paper and the recording of their presentation.

Posted by Helen Martin on Apr 30, 2020

In a follow-up to a paper presented at VB2019, Prismo Systems researchers Abhishek Singh and Ramesh Mani detail algorithms that can be used to detect SQL injection in stored procedures, persistent cross-site scripting (XSS), and server‑side request forgery (SSRF) by instrumenting web applications.

Posted by Virus Bulletin on Apr 16, 2020

VB is pleased to reveal the details of an interesting and diverse programme for VB2020, the 30th Virus Bulletin International Conference.

Posted by Virus Bulletin on Apr 2, 2020

At VB2019 in London, Jamf's Patrick Wardle analysed the WindTail macOS malware used by the WindShift APT group, active in the Middle East. Today we publish both Patrick's paper and the recording of his presentation.

Posted by Virus Bulletin on Mar 24, 2020

At VB2019 cybercrime journalist and researcher Adam Haertlé presented an analysis of almost 2000 unsolicited responses sent by victims of a malicious email campaign. Today we publish both his paper and the recording of his presentation.

Posted by Virus Bulletin on Mar 20, 2020

Often unbeknownst to network administrators, many company networks are used to download child sexual abuse material. In a paper presented at VB2019 in London, NetClean’s Richard Matti and Anna Creutz looked at this problem and what companies can do, ultimately, to help safeguard children. Today we publish their full paper.

Posted by Virus Bulletin on Mar 16, 2020

Here at VB we are keeping a close eye on the global situation regarding the COVID-19 outbreak and the various travel restrictions and health advice, but in the meantime planning and arrangements for VB2020 are going ahead as usual, including the selection of papers.

Previous1234567...215Next

Search blog

TJX hack thought biggest ever

Over 45 million card numbers gathered in massive breach.
Over 45 million card numbers gathered in massive breach. A report into a security breach at major US retailer TJX has revealed a lengthy and sophisticated attack which scooped vast… https://www.virusbulletin.com/blog/2007/03/tjx-hack-thought-biggest-ever/

Fujacks writer's removal tool slated

Virus creator's anti-virus not up to scratch, says Symantec.
Virus creator's anti-virus not up to scratch, says Symantec. A cleanup tool created by the writer of the Fujacks virus, also known as the 'Panda burning incense' virus in reference… https://www.virusbulletin.com/blog/2007/03/fujacks-writer-s-removal-tool-slated/

Another Windows zero-day exploit seen in wild

Trojans sneaking in through animated cursor flaw.
Trojans sneaking in through animated cursor flaw. A vulnerability has been discovered in the handling of .ani files, used for animated cursors on web pages and in HTML emails, and… https://www.virusbulletin.com/blog/2007/03/another-windows-zero-day-exploit-seen-wild/

Woolworths to join UK AV market

Retail chain set to issue own-label software range.
Retail chain set to issue own-label software range. Major UK high street retailer Woolworths is set to follow supermarket giant Tesco in releasing its own-brand range of software… https://www.virusbulletin.com/blog/2007/03/woolworths-join-uk-av-market/

Malware danger and profitability rising

Symantec, FBI reports show general increases in money-driven threats.
Symantec, FBI reports show general increases in money-driven threats. Two major new reports on computer security issues have shown a steady rise in just about every aspect of… https://www.virusbulletin.com/blog/2007/03/malware-danger-and-profitability-rising/

Huge haul of ID data stolen by trojan

Smart Russian spyware gathered info 'unnoticed' for 54 days.
Smart Russian spyware gathered info 'unnoticed' for 54 days. According to researchers at SecureWorks, a sophisticated trojan which spread through browser exploits, harvested… https://www.virusbulletin.com/blog/2007/03/huge-haul-id-data-stolen-trojan/

Search, link and trackback spam flooding web

Blogs, social sites and search results rivaling email for junk ads.
Blogs, social sites and search results rivaling email for junk ads. Email, long the most popular and lucrative means of getting advertising in front of computer users, is being… https://www.virusbulletin.com/blog/2007/03/search-link-and-trackback-spam-flooding-web/

RSA to provide trojan removal services

Anti-fraud system provides avenue for reporting and stopping targeted attacks.
Anti-fraud system provides avenue for reporting and stopping targeted attacks. Security firm RSA has announced a new system to block spyware and phishing fraud, by taking down… https://www.virusbulletin.com/blog/2007/03/rsa-provide-trojan-removal-services/

MS admits serious problems with OneCare

Detection failures and other issues confirmed, improvements promised.
Detection failures and other issues confirmed, improvements promised.Microsoft's Windows Live OneCare, hit by a series of public relations difficulties recently with failures in… https://www.virusbulletin.com/blog/2007/03/ms-admits-serious-problems-onecare/

No fanfare for Windows Server 2003 SP2

Major update release emerges in mysterious silence.
Major update release emerges in mysterious silence.Microsoft has released a new service pack for its Windows Server 2003 platform, almost entirely without warning or promotion. The… https://www.virusbulletin.com/blog/2007/03/no-fanfare-windows-server-2003-sp2/

Yet more vulnerabilities in major security products

Serious McAfee buffer overflow flaws join yet another Trend UPX issue.
Serious McAfee buffer overflow flaws join yet another Trend UPX issue. Several vulnerabilities have been found in McAfee's ePolicy Orchestrator management tool, which could be… https://www.virusbulletin.com/blog/2007/03/yet-more-vulnerabilities-major-security-products/

UK bankers show 44% rise in online theft

APACS study records major increase in phishing fraud earnings.
APACS study records major increase in phishing fraud earnings. UK banking payments body APACS has released its latest figures for credit card and other types of banking fraud,… https://www.virusbulletin.com/blog/2007/03/uk-bankers-show-44-rise-online-theft/

Trend takes over HijackThis

Popular free spyware-spotting tool acquired by security giant.
Popular free spyware-spotting tool acquired by security giant.Trend Micro has announced the acquisition of HijackThis, the popular freely available tool designed to reveal hidden… https://www.virusbulletin.com/blog/2007/03/trend-takes-over-hijackthis/

OneCare causing Outlook havoc

Old mailbox deletion bug resurfaces, upsets users
Old mailbox deletion bug resurfaces, upsets usersMicrosoft's Windows Live OneCare has been the cause of considerable frustration to its users recently, with an issue with the… https://www.virusbulletin.com/blog/2007/03/onecare-causing-outlook-havoc/

March Patch Tuesday cancelled

MS announces no security patches this month.
MS announces no security patches this month. With several known vulnerabilities still affecting Windows and other products, Microsoft has announced that there will be no security… https://www.virusbulletin.com/blog/2007/03/march-patch-tuesday-cancelled/

Report on TLD DNS DDoS attack released

Fact sheet on web root server bombardment published by ICANN.
Fact sheet on web root server bombardment published by ICANN. The Internet Corporation for Assigned Names and Numbers (ICANN), the body responsible for controlling the DNS system… https://www.virusbulletin.com/blog/2007/03/report-tld-dns-ddos-attack-released/

SEC halts trading in spammed stocks

Share trading in 35 pumped and dumped companies suspended.
Share trading in 35 pumped and dumped companies suspended. The US Securities and Exchange Commission (SEC) announced yesterday that it had suspended trading in the stocks of 35… https://www.virusbulletin.com/blog/2007/03/sec-halts-trading-spammed-stocks/

New Zealand passes anti-spam law

As bulk emailing is regulated in NZ, Canada hears calls for similar laws.
As bulk emailing is regulated in NZ, Canada hears calls for similar laws. The New Zealand government announced last week the final passing of a law to control spam originating in… https://www.virusbulletin.com/blog/2007/03/new-zealand-passes-anti-spam-law/

Gromozon hijacks Italian MSN searches

Link bombing pushes blended spyware attack to top of popular search results.
Link bombing pushes blended spyware attack to top of popular search results. The gang behind the sophisticated Gromozon blended threat, also known as LinkOptimizer, is thought to… https://www.virusbulletin.com/blog/2007/03/gromozon-hijacks-italian-msn-searches/

OneCare fails another detection test

Microsoft product found not up to scratch in AV-Comparatives review.
Microsoft product found not up to scratch in AV-Comparatives review. Respected testing organisation AV-Comparatives has released the results of its latest in-depth test of… https://www.virusbulletin.com/blog/2007/03/onecare-fails-another-detection-test/

« Previous 1...8687888990...120 Next »