VB Blog

VB2019 paper: Inside Magecart: the history behind the covert card-skimming assault on the e-commerce industry

Posted by   Martijn Grooten on   Oct 28, 2019

Today we publish the VB2019 paper by RiskIQ researcher Yonathan Klijnsma, who looked at the Magecart web-skimming attacks.

Read more  

VB2019 videos: partner presentations

Posted by   Martijn Grooten on   Oct 25, 2019

Today, we publish the videos of the VB2019 partner presentations by Michael Maltsev (Reason Cybersecurity) on webcam interception and protection, and by Jean-Ian Boutin and Anton Cherepanov (ESET) on the Buhtrap group.

Read more  

VB tests the web security products that play an important role in fending off web-based threats

Posted by   Martijn Grooten on   Oct 24, 2019

The web continues to be a major infection vector for malware and credential-stealing threats. In the VBWeb tests, we measure products' ability to block such threats and certify products that perform a good job at doing so.

Read more  

VB2019 papers: Emotet and Ryuk

Posted by   Martijn Grooten on   Oct 23, 2019

Today we publish VB2019 papers by Luca Nagy (Sophos) on Emotet and Gabriela Nicolao and Luciano Martins (Deloitte) on Ryuk, as well as the corresponding videos of their presentations.

Read more  

Responsible madness?

Posted by   Virus Bulletin on   Oct 22, 2019

The debate on responsible disclosure is about as old as IT security itself. In a guest post for Virus Bulletin Robert Neumann suggests we need to reconsider a one-size-fits-all solution and instead look for a well-respected independent organization to handle security issues.

Read more  

VB2019 paper: Geost botnet. The story of the discovery of a new Android banking trojan from an OpSec error

Posted by   Martijn Grooten on   Oct 21, 2019

OpSec mistakes are what lead to many malware discoveries, and in the case of the Geost Android botnet the mistake was a really interesting one. Today we publish the VB2019 paper by Sebastian García, Maria Jose Erquiaga and Anna Shirokova on the Geost botnet, as well as the recording of Sebastian and Anna presenting their research in London.

Read more  

Analysis of malware responsible for sextortion spam that mines for Monero on the side

Posted by   Virus Bulletin on   Oct 14, 2019

VB2019 Platinum partner Reason Cybersecurity presents a threat analysis report on the Save Yourself malware.

Read more  

Guest blog: Threat intelligence – a unifying force of the future

Posted by   Virus Bulletin on   Oct 4, 2019

In a guest blog post VB2019 Platinum partner Reason Cybersecurity looks to the future of threat intelligence.

Read more  

Guest blog: Why we should be paying more attention to Linux threats

Posted by   Virus Bulletin on   Sep 25, 2019

In a guest blog post VB2019 Silver partner Intezer outlines the importance of paying attention to Linux threats.

Read more  

New Emotet spam campaign continues to bypass email security products

Posted by   Martijn Grooten on   Sep 18, 2019

On Monday, the infamous Emotet malware resumed its spam campaign to spread the latest version of the malware. As before, the malware successfully bypasses many email security products.

Read more  
Previous1...89101112...215Next

Search blog

News round-up

October's goings on in the AV industry.
October's goings on in the AV industry. Despite no major malware outbreaks having occurred during last month's VB conference (as has almost seemed a tradition in the past),… https://www.virusbulletin.com/blog/2006/11/news-round/

November

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2006/11/

Spamhaus rests easy

US judge rules against suspending Spamhaus domain.
US judge rules against suspending Spamhaus domain. At the end of a month-long court battle, a US judge has ruled that UK anti-spam advisory organization Spamhaus will not have its… https://www.virusbulletin.com/blog/2006/11/spamhaus-rests-easy/

Sender ID specification released

Microsoft reveals all as part of its Open Specification Promise.
Microsoft reveals all as part of its Open Specification Promise.Microsoft has made its Sender ID Framework specification available as part of its recent Open Specification Promise,… https://www.virusbulletin.com/blog/2006/11/sender-id-specification-released/

New anti-spam group formed

StopSpamAlliance unites international bodies.
StopSpamAlliance unites international bodies. A group of international agencies and organisations have teamed up to launch StopSpamAlliance.org, designed to be a centralised base… https://www.virusbulletin.com/blog/2006/11/new-anti-spam-group-formed/

Phish check interface

Developer interface for checking phishy URLs.
Developer interface for checking phishy URLs. The people behind PhishTank, a collaborative clearing house for data and information about phishing, have revealed a simplified… https://www.virusbulletin.com/blog/2006/11/phish-check-interface/

Sophos engine faults disclosed

iDefense reports file-handling vulnerabilities.
iDefense reports file-handling vulnerabilities. Security researchers at iDefense have released information on four separate bugs in the Sophos anti-virus engine, affecting most… https://www.virusbulletin.com/blog/2006/10/sophos-engine-faults-disclosed/

Two more IE7 bugs downplayed by Microsoft

More phishing issues found, not a big problem says MS.
More phishing issues found, not a big problem says MS. A second bug was spotted late last week in Microsoft's recently-released Internet Explorer 7, which could allow malicious… https://www.virusbulletin.com/blog/2006/10/two-more-ie7-bugs-downplayed-microsoft/

McAfee up, Symantec down in profits

Financial reports differ widely between top security rivals.
Financial reports differ widely between top security rivals. Profits reports for the third quarter of the year show Symantec struggling with disappointing sales in the European… https://www.virusbulletin.com/blog/2006/10/mcafee-symantec-down-profits/

Australian spam firm fined $4.1 million

First case under spam laws brings hefty punishment.
First case under spam laws brings hefty punishment. A company based in Western Australia has been charged A$4.5 million, with another A$1 million levied from its director, after a… https://www.virusbulletin.com/blog/2006/10/australian-spam-firm-fined-4-1-million/

Windows Defender fully released

Microsoft anti-spyware product handed out free.
Microsoft anti-spyware product handed out free. After a lengthy beta period, Microsoft's free anti-spyware product, renamed Windows Defender halfway through its beta cycle, has… https://www.virusbulletin.com/blog/2006/10/windows-defender-fully-released/

Sender ID licence opened up

Microsoft frees up access to anti-spam framework.
Microsoft frees up access to anti-spam framework.Microsoft has put the specifications for the Sender ID and Sender Policy Framework (SPF) email verification system under its 'Open… https://www.virusbulletin.com/blog/2006/10/sender-id-licence-opened/

UK banks failing online users

Report names and shames insecure banking sites - again.
Report names and shames insecure banking sites - again. A report from heise Security, following up on a previous study released a month ago, claims several UK banks are still using… https://www.virusbulletin.com/blog/2006/10/uk-banks-failing-online-users/

Trojan installs Kaspersky AV

Scanner software used to keep out rival malware.
Scanner software used to keep out rival malware. A trojan has been reported in the wild using a genuine AV engine to keep its victims' machines free from other threats. This… https://www.virusbulletin.com/blog/2006/10/trojan-installs-kaspersky-av/

Latest VB100% test announced

Call for products issued for Windows XP x64 test.
Call for products issued for Windows XP x64 test. The latest round of VB 100% certification testing has been announced. The test will be run on the Windows XP Professional x64… https://www.virusbulletin.com/blog/2006/10/latest-test-announced/

Microsoft in multiple security rows

AV firms, Apple and Secunia embroiled in MS spats.
AV firms, Apple and Secunia embroiled in MS spats. Operating system giant Microsoft is engaged on multiple fronts in a series of security-related PR battles. The longest running… https://www.virusbulletin.com/blog/2006/10/microsoft-multiple-security-rows/

IE7 used as phishing lure

Spam campaign tries to hook users with new browser version.
Spam campaign tries to hook users with new browser version. A spam campaign has been spotted using the latest version of Microsoft's web browser, Internet Explorer 7, as bait. The… https://www.virusbulletin.com/blog/2006/10/ie7-used-phishing-lure/

MySpace users targeted by spam campaign

Phishers pose as online contacts to push bogus shopping sites.
Phishers pose as online contacts to push bogus shopping sites. A major spam campaign is bombarding inboxes with mails masquerading as messages from conacts on web social and… https://www.virusbulletin.com/blog/2006/10/myspace-users-targeted-spam-campaign/

MacDonald's serves up spyware

Diners 'rewarded' with infected music players
Diners 'rewarded' with infected music players Japanese customers of global burger giant MacDonald's have been warned that 10,000 MP3 players handed out by the firm as part of a… https://www.virusbulletin.com/blog/2006/10/macdonald-s-serves-spyware/

Another hole found in PowerPoint

Proof-of-concept exploit shows further bug in slideshow software
Proof-of-concept exploit shows further bug in slideshow softwareMicrosoft has issued an alert over a new potential zero-day exploit in its PowerPoint presentation software. The… https://www.virusbulletin.com/blog/2006/10/another-hole-found-powerpoint/

« Previous 1...9293949596...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.