VB Blog

VB2019 paper: Fantastic Information and Where to Find it: A guidebook to open-source OT reconnaissance

Posted by Martijn Grooten on Nov 22, 2019

A VB2019 paper by FireEye researcher Daniel Kapellmann Zafra explained how open source intelligence (OSINT) can be used to learn crucial details of the inner workings of many a system. Today we publish Daniel's paper and the recording of his presentation.

Posted by Martijn Grooten on Nov 21, 2019

Though active for not much longer than a year, GandCrab had been one of the most successful ransomware operations. In a paper presented at VB2019 in London, McAfee researchers John Fokker and Alexandre Mundo looked at the malware code, its evolution and the affiliate scheme behind it. Today we publish both their paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 18, 2019

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video of their presentation.

Posted by Martijn Grooten on Nov 18, 2019

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

Posted by Martijn Grooten on Nov 7, 2019

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 6, 2019

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Posted by Martijn Grooten on Nov 5, 2019

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

Posted by Martijn Grooten on Nov 4, 2019

Having returned from a summer hiatus, Emotet is back targeting inboxes and, as seen in the VBSpam test lab, doing a better job than most other malicious campaigns at bypassing email security products.

Posted by Martijn Grooten on Nov 1, 2019

Those working in the field of infosec are often faced with ethical dilemmas that are impossible to avoid. Today, we publish a VB2019 paper by Kaspersky researcher Ivan Kwiatkowski looking at ethics in infosec as well as the recording of Ivan's presentation.

Posted by Martijn Grooten on Oct 31, 2019

Malware used in domestic abuse situations is a growing threat, and the standard way for anti-virus products to handle such malware may not be good enough. But that doesn't mean there isn't an important role for anti-virus to play.

Previous1...7891011...215Next

Search blog

OneCare labels Gmail a virus

Rival webmail system flagged infected by Microsoft AV.
Rival webmail system flagged infected by Microsoft AV. A number of users of Microsoft's anti-virus product Windows Live OneCare have reported being warned of a virus infection when… https://www.virusbulletin.com/blog/2006/11/onecare-labels-gmail-virus/

More US political spam

Voter persuasion campaign late and sloppy, says Panda
Voter persuasion campaign late and sloppy, says Panda Spam watchers at PandaLabs have spotted a campaign hoping to trick recipients into visiting a page attacking the state of US… https://www.virusbulletin.com/blog/2006/11/more-us-political-spam/

MS releases new Sysinternals utility

Process Monitor combines filemon, regmon into unified analysis tool.
Process Monitor combines filemon, regmon into unified analysis tool.Sysinternals, now 'a wholly owned subsidiary of Microsoft Corporation', has released a new system analysis tool… https://www.virusbulletin.com/blog/2006/11/ms-releases-new-sysinternals-utility/

Vista safe without AV, says Allchin

Microsoft chief confident in new security measures.
Microsoft chief confident in new security measures. During a telephone press conference, Microsoft Platform Products and Services Co-president Jim Allchin revealed that he lets his… https://www.virusbulletin.com/blog/2006/11/vista-safe-without-av-says-allchin/

Google blog spreads Kama Sutra worm

MyWife variant mailed to 50,000 video blog watchers.
MyWife variant mailed to 50,000 video blog watchers.Google has apologised to users of its Google Video Blog, some 50,000 of whom were exposed to an email worm after three postings… https://www.virusbulletin.com/blog/2006/11/google-blog-spreads-kama-sutra-worm/

US politicians slated for spam tactics

Report criticises leaders for election-pushing mass mail campaigns.
Report criticises leaders for election-pushing mass mail campaigns. A report from Sophos has criticised the behaviour of both major US political parties, after numerous emails… https://www.virusbulletin.com/blog/2006/11/us-politicians-slated-spam-tactics/

AOL ICQ vulnerability revealed

Chat program remote execution flaw patched.
Chat program remote execution flaw patched. Details of a vulnerability found in AOL's ICQ instant messaging software have been released by TippingPoint. The ActiveX flaw could… https://www.virusbulletin.com/blog/2006/11/aol-icq-vulnerability-revealed/

Email worm spams global war news

Bush and Putin still alive, no nuclear war ahead.
Bush and Putin still alive, no nuclear war ahead. An email worm is posing as news of global warfare and the death of major world leaders in an attempt to persuade recipients to… https://www.virusbulletin.com/blog/2006/11/email-worm-spams-global-war-news/

US way ahead in phishing and spam

PhishTank, Sophos stats put US at top of lists.
PhishTank, Sophos stats put US at top of lists. Statistics released by anti-phishing community project PhishTank, launched early last month, have put the US far ahead of the field… https://www.virusbulletin.com/blog/2006/11/us-way-ahead-phishing-and-spam/

XMLHTTP zero-day exploit

ActiveX vulnerability in use by attackers.
ActiveX vulnerability in use by attackers. A new flaw in Microsoft's XML Core Services 4.0 is in active use by malicious websites, with attackers using the vulnerability to… https://www.virusbulletin.com/blog/2006/11/xmlhttp-zero-day-exploit/

Adware costs Zango $3 million

Cash and promises settle deceptive practices case.
Cash and promises settle deceptive practices case. Adware giant Zango, formerly known as 180Solutions, has settled a case brought by the US Federal Trade Commission (FTC) for $3… https://www.virusbulletin.com/blog/2006/11/adware-costs-zango-3-million/

FBI busts phishing gang

Arrests made in Poland and US, more expected.
Arrests made in Poland and US, more expected. A large operation carried out by the FBI against a phishing operation has resulted in a string of arrests. Four people are being held… https://www.virusbulletin.com/blog/2006/11/fbi-busts-phishing-gang/

IE7 causing McAfee update problems

New browser version blocking install and updates.
New browser version blocking install and updates. Security settings in the new version of Microsoft's web browser, Internet Explorer 7, are causing problems for users of McAfee… https://www.virusbulletin.com/blog/2006/11/ie7-causing-mcafee-update-problems/

New OSX parasitic virus found

Symantec report proof-of-concept file infector for Mac.
Symantec report proof-of-concept file infector for Mac. Analysts at Symantec have received samples of a proof-of-concept file infector for the Apple Mac OSX platform. The virus,… https://www.virusbulletin.com/blog/2006/11/new-osx-parasitic-virus-found/

Spam worse than postal junk mail

Survey finds emails more irritating than unwanted paper.
Survey finds emails more irritating than unwanted paper. A study carried out by researchers from the University of Georgia's Grady College of Journalism and Mass Communication and… https://www.virusbulletin.com/blog/2006/11/spam-worse-postal-junk-mail/

Wikipedia spam points to malware

Emails used archive function to lend authenticity.
Emails used archive function to lend authenticity. Popular online encyclopaedia Wikipedia has been used as a vector for malware, with a spam campaign using the site's reputation… https://www.virusbulletin.com/blog/2006/11/wikipedia-spam-points-malware/

Academics create mobile malware

California University publishes Symbian proof of concept.
California University publishes Symbian proof of concept. A group of researchers at the University of California, Santa Barbara, (UCSB) have released details and source code for a… https://www.virusbulletin.com/blog/2006/11/academics-create-mobile-malware/

Spammed trojans posing as McAfee report

Campaign uses security news to bypass security.
Campaign uses security news to bypass security. A spam campaign has been spotted, with the emails claiming to come from security giant McAfee and to contain a report on recent… https://www.virusbulletin.com/blog/2006/11/spammed-trojans-posing-mcafee-report/

Spam hits record levels in October

Image-based pump-and-dumps add to inbox bloat.
Image-based pump-and-dumps add to inbox bloat. Spam levels have continued to rise, defying general trends that would suggest a decreasing post-summer ratio, as more people at work… https://www.virusbulletin.com/blog/2006/11/spam-hits-record-levels-october/

November issue of VB published

The November issue of Virus Bulletin is now available for subscribers to download.
The November issue of Virus Bulletin is now available for subscribers to download. The November 2006 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2006/11/november-issue-vb-published/

« Previous 1...9192939495...120 Next »