VB Blog

VBSpam tests to be executed under the AMTSO framework

Posted by   Virus Bulletin on   Jun 24, 2024

VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework.

Read more  

In memoriam: Prof. Ross Anderson

Posted by   Virus Bulletin on   Apr 2, 2024

We were very sorry to learn of the passing of Professor Ross Anderson a few days ago.

Read more  

In memoriam: Dr Alan Solomon

Posted by   Virus Bulletin on   Feb 14, 2024

We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week.

Read more  

New paper: Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

Posted by   Virus Bulletin on   Oct 12, 2023

In a new paper, researchers Aditya K Sood and Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited in order to gather threat intelligence, and present a model of mobile AppInjects.

Read more  

New paper: Collector-stealer: a Russian origin credential and information extractor

Posted by   Virus Bulletin on   Dec 8, 2021

In a new paper, F5 researchers Aditya K Sood and Rohit Chaturvedi present a 360 analysis of Collector-stealer, a Russian-origin credential and information extractor.

Read more  

VB2021 localhost videos available on YouTube

Posted by   Virus Bulletin on   Nov 4, 2021

VB has made all VB2021 localhost presentations available on the VB YouTube channel, so you can now watch - and share - any part of the conference freely and without registration.

Read more  

VB2021 localhost is over, but the content is still available to view!

Posted by   Virus Bulletin on   Oct 11, 2021

VB2021 localhost - VB's second virtual conference - took place last week, but you can still watch all the presentations.

Read more  

VB2021 localhost call for last-minute papers

Posted by   Virus Bulletin on   Aug 2, 2021

The call for last-minute papers for VB2021 localhost is now open. Submit before 20 August to have your paper considered for one of the slots reserved for 'hot' research!

Read more  

New article: Run your malicious VBA macros anywhere!

Posted by   Virus Bulletin on   Apr 21, 2021

Kurt Natvig explains how he recompiled malicious VBA macro code to valid harmless Python 3.x code.

Read more  

New article: Dissecting the design and vulnerabilities in AZORult C&C panels

Posted by   Virus Bulletin on   Apr 7, 2021

In a new article, Aditya K Sood looks at the command-and-control (C&C) design of the AZORult malware, discussing his team's findings related to the C&C design and some security issues they identified.

Read more  
Previous1234567...215Next

Search blog

More phishers and spammers face prison time

US, Dutch and Japanese police crack down on online bad guys.
US, Dutch and Japanese police crack down on online bad guys. Of a series of arrests and convictions this week, the most spectacular headlines centre on the potential 101-year… https://www.virusbulletin.com/blog/2007/01/more-phishers-and-spammers-face-prison-time/

Wide support for spyware teacher

Malware infestation alleged at root of porn conviction.
Malware infestation alleged at root of porn conviction. A Connecticut teacher, recently convicted of morals offences after her laptop displayed a range of pornographic sites to a… https://www.virusbulletin.com/blog/2007/01/wide-support-spyware-teacher/

Sony rootkit settlement costs escalate

Use of hidden DRM software costs company $5.75m.
Use of hidden DRM software costs company $5.75m. Sony BMG Music Entertainment's ill-advised use of hidden digital rights management (DRM) software on its CDs in late 2005 has cost… https://www.virusbulletin.com/blog/2007/01/sony-rootkit-settlement-costs-escalate/

Government agencies take anti-phishing action

Spear-phishing awareness training and testing for staff.
Spear-phishing awareness training and testing for staff. Personnel working for the US Coast Guard have been ordered to take phishing awareness training, while other US government… https://www.virusbulletin.com/blog/2007/01/government-agencies-take-anti-phishing-action/

2007

Latest news from the anti-virus industry provided by independent anti-virus advisors, Virus Bulletin
NewsMagic lanterns shine at terroristsVirus Bulletin finds 40% of users think governments should write viruses to bug terrorists.19 December 2007$3.2 billion lost in phishing… https://www.virusbulletin.com/blog/2007/

MMS mobile phone exploit released

Buffer overflow vulnerability in MMS SMIL exploited.
Buffer overflow vulnerability in MMS SMIL exploited. Last month saw the publication of proof-of-concept code exploiting a vulnerability in the popular mobile phone Multimedia… https://www.virusbulletin.com/blog/2007/01/mms-mobile-phone-exploit-released/

UK anti-spam victory for Microsoft

Lawsuit won against UK spammer.
Lawsuit won against UK spammer. Microsoft has won a lawsuit against a spammer based in the UK. Microsoft launched legal proceedings against 37-year-old Paul Martin McDonald after… https://www.virusbulletin.com/blog/2007/01/uk-anti-spam-victory-microsoft/

January

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2007/01/

BitDefender vulnerability disclosed

Details released of overflow issue reported and patched.
Details released of overflow issue reported and patched.BitDefender and several security-watching sites have unveiled details of a serious overflow vulnerability in the parsing of… https://www.virusbulletin.com/blog/2006/12/bitdefender-vulnerability-disclosed/

'Big Yellow' worm exploits slow Symantec patchers

Worm spotted targeting 6-month-old vulnerability in AV products.
Worm spotted targeting 6-month-old vulnerability in AV products. An alert has been issued by eEye Digital Security researchers for a new worm, which they have called 'Big Yellow',… https://www.virusbulletin.com/blog/2006/12/big-yellow-worm-exploits-slow-symantec-patchers/

UK taxman warns of rebate phish

Mails promising tax refund just another scam.
Mails promising tax refund just another scam.Her Majesty's Revenue and Customs (HMRC), the UK taxation authority, has issued a warning regarding a phishing campaign using its name.… https://www.virusbulletin.com/blog/2006/12/uk-taxman-warns-rebate-phish/

Microsoft wins block on spam list seller

Court bars bulk email address sales site from further business.
Court bars bulk email address sales site from further business.Microsoft has won a judgement against a UK man accused of selling lists of email addresses for the purpose of… https://www.virusbulletin.com/blog/2006/12/microsoft-wins-block-spam-list-seller/

UK phishing up 8000% in two years, says FSA

Government report shows massive rise in scams.
Government report shows massive rise in scams. A report presented to the UK government by the Financial Services Authority (FSA), the UK's financial watchdog organisation,… https://www.virusbulletin.com/blog/2006/12/uk-phishing-8000-two-years-says-fsa/

Yet more Word zero-day woes

Possible third vulnerability in popular software exploited.
Possible third vulnerability in popular software exploited. Reports are coming in of a new exploit for Microsoft's Word word processing software, amid speculation that the attack… https://www.virusbulletin.com/blog/2006/12/yet-more-word-zero-day-woes/

European mailer society signs spyware charter

Direct marketeers' association adopts code of good behaviour.
Direct marketeers' association adopts code of good behaviour. The Federation of European Direct and Interactive Marketing (FEDMA), a common-interest and self-regulatory body for… https://www.virusbulletin.com/blog/2006/12/european-mailer-society-signs-spyware-charter/

US Postal Service accused of spamming

Customer email campaign in breach of CAN-SPAM regulations.
Customer email campaign in breach of CAN-SPAM regulations. The US Postal Service (USPS) has come under fire from anti-spam activists after a mass email campaign promoting a new… https://www.virusbulletin.com/blog/2006/12/us-postal-service-accused-spamming/

Putting a price on spam

Email-forwarding system lets users set a fee to let spam through.
Email-forwarding system lets users set a fee to let spam through. Email-forwarding system Boxbe has come up with a new way around the spam problem - by letting its users set a fee… https://www.virusbulletin.com/blog/2006/12/putting-price-spam/

Ransom attacks hit webmail

Accounts held hostage by data-stealing extortionists.
Accounts held hostage by data-stealing extortionists. Following the wave of 'ransomware' attacks first spotted in the summer of 2005, online extortionists have picked another… https://www.virusbulletin.com/blog/2006/12/ransom-attacks-hit-webmail/

Patch Tuesday leaves Word open to attack

Old and new zero-day vulnerabilities to remain unpatched.
Old and new zero-day vulnerabilities to remain unpatched.Microsoft's monthly Patch Tuesday update release sees seven security patches for Windows operating systems and products,… https://www.virusbulletin.com/blog/2006/12/patch-tuesday-leaves-word-open-attack/

Sophos vulnerabilities found, patched

Fixes issued for archive handling problems.
Fixes issued for archive handling problems. Researchers working with Tipping Point's Zero Day Initiative (ZDI) program have released details of two vulnerabilities in the Sophos… https://www.virusbulletin.com/blog/2006/12/sophos-vulnerabilities-found-patched/

« Previous 1...8889909192...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.