VB Blog

VB2019 paper: Inside Magecart: the history behind the covert card-skimming assault on the e-commerce industry

Posted by Martijn Grooten on Oct 28, 2019

Today we publish the VB2019 paper by RiskIQ researcher Yonathan Klijnsma, who looked at the Magecart web-skimming attacks.

Posted by Martijn Grooten on Oct 25, 2019

Today, we publish the videos of the VB2019 partner presentations by Michael Maltsev (Reason Cybersecurity) on webcam interception and protection, and by Jean-Ian Boutin and Anton Cherepanov (ESET) on the Buhtrap group.

Posted by Martijn Grooten on Oct 24, 2019

The web continues to be a major infection vector for malware and credential-stealing threats. In the VBWeb tests, we measure products' ability to block such threats and certify products that perform a good job at doing so.

Posted by Martijn Grooten on Oct 23, 2019

Today we publish VB2019 papers by Luca Nagy (Sophos) on Emotet and Gabriela Nicolao and Luciano Martins (Deloitte) on Ryuk, as well as the corresponding videos of their presentations.

Posted by Virus Bulletin on Oct 22, 2019

The debate on responsible disclosure is about as old as IT security itself. In a guest post for Virus Bulletin Robert Neumann suggests we need to reconsider a one-size-fits-all solution and instead look for a well-respected independent organization to handle security issues.

Posted by Martijn Grooten on Oct 21, 2019

OpSec mistakes are what lead to many malware discoveries, and in the case of the Geost Android botnet the mistake was a really interesting one. Today we publish the VB2019 paper by Sebastian García, Maria Jose Erquiaga and Anna Shirokova on the Geost botnet, as well as the recording of Sebastian and Anna presenting their research in London.

Posted by Virus Bulletin on Oct 14, 2019

VB2019 Platinum partner Reason Cybersecurity presents a threat analysis report on the Save Yourself malware.

Posted by Virus Bulletin on Oct 4, 2019

In a guest blog post VB2019 Platinum partner Reason Cybersecurity looks to the future of threat intelligence.

Posted by Virus Bulletin on Sep 25, 2019

In a guest blog post VB2019 Silver partner Intezer outlines the importance of paying attention to Linux threats.

Posted by Martijn Grooten on Sep 18, 2019

On Monday, the infamous Emotet malware resumed its spam campaign to spread the latest version of the malware. As before, the malware successfully bypasses many email security products.

Previous1...89101112...215Next

Search blog

EU demands better spam and malware fighting

Commission report calls for smarter response to online onslaught.
Commission report calls for smarter response to online onslaught. An official statement from the European Commission has demanded a step up in the battle against spam, spyware and… https://www.virusbulletin.com/blog/2006/11/eu-demands-better-spam-and-malware-fighting/

Vulnerability hits F-Secure gateway products

Flaw in OpenSSL could allow DoS on servers.
Flaw in OpenSSL could allow DoS on servers. A vulnerability in OpenSSL software, used to access the administration interface in some F-Secure gateway and mail protection products,… https://www.virusbulletin.com/blog/2006/11/vulnerability-hits-f-secure-gateway-products/

Worm targets old Symantec hole

Long-patched vulnerability attacked by new Spybot.
Long-patched vulnerability attacked by new Spybot. A version of the Spybot worm has been spotted attempting to use a vulnerability in Symantec Client Security and Symantec… https://www.virusbulletin.com/blog/2006/11/worm-targets-old-symantec-hole/

Spyware pushers let off fines

FTC reduces punishment for crooks 'unable to pay'.
FTC reduces punishment for crooks 'unable to pay'. Two spyware operations have settled lawsuits brought against them by the Federal Trade Commission (FTC) at a huge discount. The… https://www.virusbulletin.com/blog/2006/11/spyware-pushers-let-fines/

Severe vulnerability hits Mac OSX

Exploit published for gaping DMG hole.
Exploit published for gaping DMG hole. A serious vulnerability found in the DMG handling on fully up-to-date installations of Apple's OSX is threatening to upset the platform's… https://www.virusbulletin.com/blog/2006/11/severe-vulnerability-hits-mac-osx/

McAfee in anti-phishing confusion

Latest study rates all filters poorly, slates SiteAdvisor.
Latest study rates all filters poorly, slates SiteAdvisor. In two recent studies of anti-phishing technologies, one (sponsored by Microsoft) rated Internet Explorer highest, while… https://www.virusbulletin.com/blog/2006/11/mcafee-anti-phishing-confusion/

Spammers and phishers target Christmas shoppers

Online shoppers and email users face heightened festive risks.
Online shoppers and email users face heightened festive risks. With the annual Christmas spending frenzy fast approaching, phishing is as usual on the rise, targeting inexperienced… https://www.virusbulletin.com/blog/2006/11/spammers-and-phishers-target-christmas-shoppers/

ISS to integrate BitDefender

Big Blue adds anti-virus and anti-spyware to desktop security product.
Big Blue adds anti-virus and anti-spyware to desktop security product.IBM announced yesterday that its Internet Security Systems (ISS) subsidiary will be including anti-virus and… https://www.virusbulletin.com/blog/2006/11/iss-integrate-bitdefender/

Zango still in spyware game

Dodgy tactics continue despite ruling.
Dodgy tactics continue despite ruling. Several researchers have complained that adware-fuelled media company Zango continues to use deceptive practices, despite the recent case… https://www.virusbulletin.com/blog/2006/11/zango-still-spyware-game/

Trojan planted on Chinese banking site

Backdoor dropper sneaked onto bank card operator's servers.
Backdoor dropper sneaked onto bank card operator's servers. News sources in China are reporting that the website of China UnionPay, a China-wide cross-bank credit card service used… https://www.virusbulletin.com/blog/2006/11/trojan-planted-chinese-banking-site/

UK toughens law against DoS, tools

New law ups penalties for hacking, but could threaten security research.
New law ups penalties for hacking, but could threaten security research. The UK 'Police and Justice Bill 2006', introduced into UK law this month, has drawn some approval for its… https://www.virusbulletin.com/blog/2006/11/uk-toughens-law-against-dos-tools/

Worm targets Real Media files

McAfee warns of dangerous movies and music.
McAfee warns of dangerous movies and music. Researchers at McAfee's Avert Labs have warned of a new worm, dubbed 'W32/Realor', which doctors the contents of Real Media files… https://www.virusbulletin.com/blog/2006/11/worm-targets-real-media-files/

Patch Tuesday vulnerability exploited

Attack developed within two days of disclosure.
Attack developed within two days of disclosure. The Workstation Service flaw announced and patched on Tuesday, one of the most critical vulnerabilities covered by Microsoft's… https://www.virusbulletin.com/blog/2006/11/patch-tuesday-vulnerability-exploited/

Firefox anti-phishing better, says Mozilla

Browser phishing filters battle for supremacy.
Browser phishing filters battle for supremacy.Mozilla has released results of an independently run test of phishing filters, in which its latest product, Firefox 2.0, is compared… https://www.virusbulletin.com/blog/2006/11/firefox-anti-phishing-better-says-mozilla/

Panda vulnerabilities revealed

ActiveScan remote access holes patched, details disclosed.
ActiveScan remote access holes patched, details disclosed. Several vulnerabilites have been found in Panda Software's ActiveScan product. The problems could be used to initiate a… https://www.virusbulletin.com/blog/2006/11/panda-vulnerabilities-revealed/

Mobile firewalls released

Trend, F-Secure add extra layer to smartphone security.
Trend, F-Secure add extra layer to smartphone security. Two new products have been unveiled this week offering firewall protection for smartphones and PDAs, with both Trend Micro… https://www.virusbulletin.com/blog/2006/11/mobile-firewalls-released/

AVG, F-PROT suffer vulnerabilities

Reports of buffer overflows and other problems.
Reports of buffer overflows and other problems. A series of vulnerabilities have been discovered and patched in Grisoft's AVG Antivirus. Several issues with archive handling could… https://www.virusbulletin.com/blog/2006/11/avg-f-prot-suffer-vulnerabilities/

Forefront Client reaches beta

Microsoft corporate security product goes into public test.
Microsoft corporate security product goes into public test.Microsoft's long-awaited corporate security suite, Forefront Client Security, has been released to public beta. The new… https://www.virusbulletin.com/blog/2006/11/forefront-client-reaches-beta/

Courts shut down spyware pushers

Media Motor operation frozen by FTC case.
Media Motor operation frozen by FTC case. The US Federal Trade Commission (FTC) has brought a case against the spyware operation Media Motor, with the company and its affiliates… https://www.virusbulletin.com/blog/2006/11/courts-shut-down-spyware-pushers/

Russians dominate spammer top ten

Half of ten worst spammers from former USSR.
Half of ten worst spammers from former USSR. This week's list of the top ten 'worst spammers and spam gangs', released by spam fighters Spamhaus, is dominated by eastern Europeans,… https://www.virusbulletin.com/blog/2006/11/russians-dominate-spammer-top-ten/

« Previous 1...9091929394...120 Next »