VB Blog

VB2019 paper: Fantastic Information and Where to Find it: A guidebook to open-source OT reconnaissance

Posted by Martijn Grooten on Nov 22, 2019

A VB2019 paper by FireEye researcher Daniel Kapellmann Zafra explained how open source intelligence (OSINT) can be used to learn crucial details of the inner workings of many a system. Today we publish Daniel's paper and the recording of his presentation.

Posted by Martijn Grooten on Nov 21, 2019

Though active for not much longer than a year, GandCrab had been one of the most successful ransomware operations. In a paper presented at VB2019 in London, McAfee researchers John Fokker and Alexandre Mundo looked at the malware code, its evolution and the affiliate scheme behind it. Today we publish both their paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 18, 2019

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video of their presentation.

Posted by Martijn Grooten on Nov 18, 2019

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

Posted by Martijn Grooten on Nov 7, 2019

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 6, 2019

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Posted by Martijn Grooten on Nov 5, 2019

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

Posted by Martijn Grooten on Nov 4, 2019

Having returned from a summer hiatus, Emotet is back targeting inboxes and, as seen in the VBSpam test lab, doing a better job than most other malicious campaigns at bypassing email security products.

Posted by Martijn Grooten on Nov 1, 2019

Those working in the field of infosec are often faced with ethical dilemmas that are impossible to avoid. Today, we publish a VB2019 paper by Kaspersky researcher Ivan Kwiatkowski looking at ethics in infosec as well as the recording of Ivan's presentation.

Posted by Martijn Grooten on Oct 31, 2019

Malware used in domestic abuse situations is a growing threat, and the standard way for anti-virus products to handle such malware may not be good enough. But that doesn't mean there isn't an important role for anti-virus to play.

Previous1...7891011...215Next

Search blog

Worm targets old Symantec hole

Long-patched vulnerability attacked by new Spybot.
Long-patched vulnerability attacked by new Spybot. A version of the Spybot worm has been spotted attempting to use a vulnerability in Symantec Client Security and Symantec… https://www.virusbulletin.com/blog/2006/11/worm-targets-old-symantec-hole/

Europe facing 38 billion spams a day by 2010

Research group releases report on future spam trends.
Research group releases report on future spam trends. Technology market research firm The Radicati Group has unveiled an in-depth study of likely future trends in the European… https://www.virusbulletin.com/blog/2006/11/europe-facing-38-billion-spams-day-2010/

EU demands better spam and malware fighting

Commission report calls for smarter response to online onslaught.
Commission report calls for smarter response to online onslaught. An official statement from the European Commission has demanded a step up in the battle against spam, spyware and… https://www.virusbulletin.com/blog/2006/11/eu-demands-better-spam-and-malware-fighting/

Severe vulnerability hits Mac OSX

Exploit published for gaping DMG hole.
Exploit published for gaping DMG hole. A serious vulnerability found in the DMG handling on fully up-to-date installations of Apple's OSX is threatening to upset the platform's… https://www.virusbulletin.com/blog/2006/11/severe-vulnerability-hits-mac-osx/

Spyware pushers let off fines

FTC reduces punishment for crooks 'unable to pay'.
FTC reduces punishment for crooks 'unable to pay'. Two spyware operations have settled lawsuits brought against them by the Federal Trade Commission (FTC) at a huge discount. The… https://www.virusbulletin.com/blog/2006/11/spyware-pushers-let-fines/

Spammers and phishers target Christmas shoppers

Online shoppers and email users face heightened festive risks.
Online shoppers and email users face heightened festive risks. With the annual Christmas spending frenzy fast approaching, phishing is as usual on the rise, targeting inexperienced… https://www.virusbulletin.com/blog/2006/11/spammers-and-phishers-target-christmas-shoppers/

McAfee in anti-phishing confusion

Latest study rates all filters poorly, slates SiteAdvisor.
Latest study rates all filters poorly, slates SiteAdvisor. In two recent studies of anti-phishing technologies, one (sponsored by Microsoft) rated Internet Explorer highest, while… https://www.virusbulletin.com/blog/2006/11/mcafee-anti-phishing-confusion/

Zango still in spyware game

Dodgy tactics continue despite ruling.
Dodgy tactics continue despite ruling. Several researchers have complained that adware-fuelled media company Zango continues to use deceptive practices, despite the recent case… https://www.virusbulletin.com/blog/2006/11/zango-still-spyware-game/

ISS to integrate BitDefender

Big Blue adds anti-virus and anti-spyware to desktop security product.
Big Blue adds anti-virus and anti-spyware to desktop security product.IBM announced yesterday that its Internet Security Systems (ISS) subsidiary will be including anti-virus and… https://www.virusbulletin.com/blog/2006/11/iss-integrate-bitdefender/

UK toughens law against DoS, tools

New law ups penalties for hacking, but could threaten security research.
New law ups penalties for hacking, but could threaten security research. The UK 'Police and Justice Bill 2006', introduced into UK law this month, has drawn some approval for its… https://www.virusbulletin.com/blog/2006/11/uk-toughens-law-against-dos-tools/

Trojan planted on Chinese banking site

Backdoor dropper sneaked onto bank card operator's servers.
Backdoor dropper sneaked onto bank card operator's servers. News sources in China are reporting that the website of China UnionPay, a China-wide cross-bank credit card service used… https://www.virusbulletin.com/blog/2006/11/trojan-planted-chinese-banking-site/

Patch Tuesday vulnerability exploited

Attack developed within two days of disclosure.
Attack developed within two days of disclosure. The Workstation Service flaw announced and patched on Tuesday, one of the most critical vulnerabilities covered by Microsoft's… https://www.virusbulletin.com/blog/2006/11/patch-tuesday-vulnerability-exploited/

Worm targets Real Media files

McAfee warns of dangerous movies and music.
McAfee warns of dangerous movies and music. Researchers at McAfee's Avert Labs have warned of a new worm, dubbed 'W32/Realor', which doctors the contents of Real Media files… https://www.virusbulletin.com/blog/2006/11/worm-targets-real-media-files/

Firefox anti-phishing better, says Mozilla

Browser phishing filters battle for supremacy.
Browser phishing filters battle for supremacy.Mozilla has released results of an independently run test of phishing filters, in which its latest product, Firefox 2.0, is compared… https://www.virusbulletin.com/blog/2006/11/firefox-anti-phishing-better-says-mozilla/

Panda vulnerabilities revealed

ActiveScan remote access holes patched, details disclosed.
ActiveScan remote access holes patched, details disclosed. Several vulnerabilites have been found in Panda Software's ActiveScan product. The problems could be used to initiate a… https://www.virusbulletin.com/blog/2006/11/panda-vulnerabilities-revealed/

AVG, F-PROT suffer vulnerabilities

Reports of buffer overflows and other problems.
Reports of buffer overflows and other problems. A series of vulnerabilities have been discovered and patched in Grisoft's AVG Antivirus. Several issues with archive handling could… https://www.virusbulletin.com/blog/2006/11/avg-f-prot-suffer-vulnerabilities/

Mobile firewalls released

Trend, F-Secure add extra layer to smartphone security.
Trend, F-Secure add extra layer to smartphone security. Two new products have been unveiled this week offering firewall protection for smartphones and PDAs, with both Trend Micro… https://www.virusbulletin.com/blog/2006/11/mobile-firewalls-released/

Courts shut down spyware pushers

Media Motor operation frozen by FTC case.
Media Motor operation frozen by FTC case. The US Federal Trade Commission (FTC) has brought a case against the spyware operation Media Motor, with the company and its affiliates… https://www.virusbulletin.com/blog/2006/11/courts-shut-down-spyware-pushers/

Russians dominate spammer top ten

Half of ten worst spammers from former USSR.
Half of ten worst spammers from former USSR. This week's list of the top ten 'worst spammers and spam gangs', released by spam fighters Spamhaus, is dominated by eastern Europeans,… https://www.virusbulletin.com/blog/2006/11/russians-dominate-spammer-top-ten/

Forefront Client reaches beta

Microsoft corporate security product goes into public test.
Microsoft corporate security product goes into public test.Microsoft's long-awaited corporate security suite, Forefront Client Security, has been released to public beta. The new… https://www.virusbulletin.com/blog/2006/11/forefront-client-reaches-beta/

« Previous 1...9091929394...120 Next »