VB Blog

VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors

Posted by Martijn Grooten on Jan 7, 2019

Today, we publish the VB2018 paper by Chronicle researcher Juan Andres Guerrero-Saade, who argues we should change the way we talk about APT actors.

Posted by Martijn Grooten on Dec 19, 2018

VB Editor Martijn Grooten reviews Charles Arthur's Cyber Wars, which looks at seven prominent hacks and attacks, and the lessons we can learn from them.

Posted by Martijn Grooten on Dec 14, 2018

At VB2018 Sophos researcher Gábor Szappanos provided a detailed overview of Office exploit builders, and looked in particular at the widely exploited CVE-2017-0199. Today we publish his paper and release the video of his presentation.

Posted by Martijn Grooten on Dec 12, 2018

Today, we release the video of the VB2018 presentation by Check Point researcher Aseel Kayal, who connected the various dots relating to campaigns by the APT-C-23 threat group.

Posted by Martijn Grooten on Dec 11, 2018

VB calls on organisations and individuals involved in threat intelligence from around the world to participate in next year's Virus Bulletin conference.

Posted by Martijn Grooten on Dec 7, 2018

Today, we publish the VB2018 paper by Qihoo 360 researchers Ya Liu and Hui Wang, on extracting data from variants of the Mirai botnet to classify and track variants.

Posted by Martijn Grooten on Dec 6, 2018

2018 has seen an increase in the variety of botnets living on the Internet of Things - such as Hide'N'Seek, which is notable for its use of peer-to-peer for command-and-control communication. Today, we publish the VB2018 paper by Bitdefender researchers Adrian Șendroiu and Vladimir Diaconescu, who studied the Hide'N'Seek IoT botnet. We also release the recording of their presentation.

Posted by Martijn Grooten on Dec 4, 2018

In a new paper, Avast researchers Jan Sirmer and Adolf Streda look at how a spam campaign sent via the Necurs botnet was delivering the Flawed Ammyy RAT. As well as publishing the paper, we have also released the video of the reseachers' VB2018 presentation on the same topic.

Posted by Martijn Grooten on Nov 29, 2018

Today we have published the video of the VB2018 presentation by Andrew Brandt (Sophos) on the SamSam ransomware, which became hot news following the indictment of its two suspected authors yesterday.

Posted by Martijn Grooten on Nov 28, 2018

Today, we publish the video of the VB2018 presentation by CitizenLab researchers Masashi Nishihata and John Scott Railton, on threats faced by civil society.

Previous1...1415161718...215Next

Search blog

Vulnerability hits F-Secure gateway products

Flaw in OpenSSL could allow DoS on servers.
Flaw in OpenSSL could allow DoS on servers. A vulnerability in OpenSSL software, used to access the administration interface in some F-Secure gateway and mail protection products,… https://www.virusbulletin.com/blog/2006/11/vulnerability-hits-f-secure-gateway-products/

Worm targets old Symantec hole

Long-patched vulnerability attacked by new Spybot.
Long-patched vulnerability attacked by new Spybot. A version of the Spybot worm has been spotted attempting to use a vulnerability in Symantec Client Security and Symantec… https://www.virusbulletin.com/blog/2006/11/worm-targets-old-symantec-hole/

Europe facing 38 billion spams a day by 2010

Research group releases report on future spam trends.
Research group releases report on future spam trends. Technology market research firm The Radicati Group has unveiled an in-depth study of likely future trends in the European… https://www.virusbulletin.com/blog/2006/11/europe-facing-38-billion-spams-day-2010/

Spyware pushers let off fines

FTC reduces punishment for crooks 'unable to pay'.
FTC reduces punishment for crooks 'unable to pay'. Two spyware operations have settled lawsuits brought against them by the Federal Trade Commission (FTC) at a huge discount. The… https://www.virusbulletin.com/blog/2006/11/spyware-pushers-let-fines/

Severe vulnerability hits Mac OSX

Exploit published for gaping DMG hole.
Exploit published for gaping DMG hole. A serious vulnerability found in the DMG handling on fully up-to-date installations of Apple's OSX is threatening to upset the platform's… https://www.virusbulletin.com/blog/2006/11/severe-vulnerability-hits-mac-osx/

McAfee in anti-phishing confusion

Latest study rates all filters poorly, slates SiteAdvisor.
Latest study rates all filters poorly, slates SiteAdvisor. In two recent studies of anti-phishing technologies, one (sponsored by Microsoft) rated Internet Explorer highest, while… https://www.virusbulletin.com/blog/2006/11/mcafee-anti-phishing-confusion/

Spammers and phishers target Christmas shoppers

Online shoppers and email users face heightened festive risks.
Online shoppers and email users face heightened festive risks. With the annual Christmas spending frenzy fast approaching, phishing is as usual on the rise, targeting inexperienced… https://www.virusbulletin.com/blog/2006/11/spammers-and-phishers-target-christmas-shoppers/

Zango still in spyware game

Dodgy tactics continue despite ruling.
Dodgy tactics continue despite ruling. Several researchers have complained that adware-fuelled media company Zango continues to use deceptive practices, despite the recent case… https://www.virusbulletin.com/blog/2006/11/zango-still-spyware-game/

ISS to integrate BitDefender

Big Blue adds anti-virus and anti-spyware to desktop security product.
Big Blue adds anti-virus and anti-spyware to desktop security product.IBM announced yesterday that its Internet Security Systems (ISS) subsidiary will be including anti-virus and… https://www.virusbulletin.com/blog/2006/11/iss-integrate-bitdefender/

UK toughens law against DoS, tools

New law ups penalties for hacking, but could threaten security research.
New law ups penalties for hacking, but could threaten security research. The UK 'Police and Justice Bill 2006', introduced into UK law this month, has drawn some approval for its… https://www.virusbulletin.com/blog/2006/11/uk-toughens-law-against-dos-tools/

Trojan planted on Chinese banking site

Backdoor dropper sneaked onto bank card operator's servers.
Backdoor dropper sneaked onto bank card operator's servers. News sources in China are reporting that the website of China UnionPay, a China-wide cross-bank credit card service used… https://www.virusbulletin.com/blog/2006/11/trojan-planted-chinese-banking-site/

Worm targets Real Media files

McAfee warns of dangerous movies and music.
McAfee warns of dangerous movies and music. Researchers at McAfee's Avert Labs have warned of a new worm, dubbed 'W32/Realor', which doctors the contents of Real Media files… https://www.virusbulletin.com/blog/2006/11/worm-targets-real-media-files/

Patch Tuesday vulnerability exploited

Attack developed within two days of disclosure.
Attack developed within two days of disclosure. The Workstation Service flaw announced and patched on Tuesday, one of the most critical vulnerabilities covered by Microsoft's… https://www.virusbulletin.com/blog/2006/11/patch-tuesday-vulnerability-exploited/

Panda vulnerabilities revealed

ActiveScan remote access holes patched, details disclosed.
ActiveScan remote access holes patched, details disclosed. Several vulnerabilites have been found in Panda Software's ActiveScan product. The problems could be used to initiate a… https://www.virusbulletin.com/blog/2006/11/panda-vulnerabilities-revealed/

Firefox anti-phishing better, says Mozilla

Browser phishing filters battle for supremacy.
Browser phishing filters battle for supremacy.Mozilla has released results of an independently run test of phishing filters, in which its latest product, Firefox 2.0, is compared… https://www.virusbulletin.com/blog/2006/11/firefox-anti-phishing-better-says-mozilla/

AVG, F-PROT suffer vulnerabilities

Reports of buffer overflows and other problems.
Reports of buffer overflows and other problems. A series of vulnerabilities have been discovered and patched in Grisoft's AVG Antivirus. Several issues with archive handling could… https://www.virusbulletin.com/blog/2006/11/avg-f-prot-suffer-vulnerabilities/

Mobile firewalls released

Trend, F-Secure add extra layer to smartphone security.
Trend, F-Secure add extra layer to smartphone security. Two new products have been unveiled this week offering firewall protection for smartphones and PDAs, with both Trend Micro… https://www.virusbulletin.com/blog/2006/11/mobile-firewalls-released/

Forefront Client reaches beta

Microsoft corporate security product goes into public test.
Microsoft corporate security product goes into public test.Microsoft's long-awaited corporate security suite, Forefront Client Security, has been released to public beta. The new… https://www.virusbulletin.com/blog/2006/11/forefront-client-reaches-beta/

Courts shut down spyware pushers

Media Motor operation frozen by FTC case.
Media Motor operation frozen by FTC case. The US Federal Trade Commission (FTC) has brought a case against the spyware operation Media Motor, with the company and its affiliates… https://www.virusbulletin.com/blog/2006/11/courts-shut-down-spyware-pushers/

Russians dominate spammer top ten

Half of ten worst spammers from former USSR.
Half of ten worst spammers from former USSR. This week's list of the top ten 'worst spammers and spam gangs', released by spam fighters Spamhaus, is dominated by eastern Europeans,… https://www.virusbulletin.com/blog/2006/11/russians-dominate-spammer-top-ten/

« Previous 1...9091929394...120 Next »