VB Blog

VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors

Posted by   Martijn Grooten on   Jan 7, 2019

Today, we publish the VB2018 paper by Chronicle researcher Juan Andres Guerrero-Saade, who argues we should change the way we talk about APT actors.

Read more  

Book Review: Cyber Wars

Posted by   Martijn Grooten on   Dec 19, 2018

VB Editor Martijn Grooten reviews Charles Arthur's Cyber Wars, which looks at seven prominent hacks and attacks, and the lessons we can learn from them.

Read more  

VB2018 paper: Office bugs on the rise

Posted by   Martijn Grooten on   Dec 14, 2018

At VB2018 Sophos researcher Gábor Szappanos provided a detailed overview of Office exploit builders, and looked in particular at the widely exploited CVE-2017-0199. Today we publish his paper and release the video of his presentation.

Read more  

VB2018 video: The Big Bang Theory by APT-C-23

Posted by   Martijn Grooten on   Dec 12, 2018

Today, we release the video of the VB2018 presentation by Check Point researcher Aseel Kayal, who connected the various dots relating to campaigns by the APT-C-23 threat group.

Read more  

VB2019 London - join us for the most international threat intelligence conference!

Posted by   Martijn Grooten on   Dec 11, 2018

VB calls on organisations and individuals involved in threat intelligence from around the world to participate in next year's Virus Bulletin conference.

Read more  

VB2018 paper: Tracking Mirai variants

Posted by   Martijn Grooten on   Dec 7, 2018

Today, we publish the VB2018 paper by Qihoo 360 researchers Ya Liu and Hui Wang, on extracting data from variants of the Mirai botnet to classify and track variants.

Read more  

VB2018 paper: Hide'n'Seek: an adaptive peer-to-peer IoT botnet

Posted by   Martijn Grooten on   Dec 6, 2018

2018 has seen an increase in the variety of botnets living on the Internet of Things - such as Hide'N'Seek, which is notable for its use of peer-to-peer for command-and-control communication. Today, we publish the VB2018 paper by Bitdefender researchers Adrian Șendroiu and Vladimir Diaconescu, who studied the Hide'N'Seek IoT botnet. We also release the recording of their presentation.

Read more  

New paper: Botception: botnet distributes script with bot capabilities

Posted by   Martijn Grooten on   Dec 4, 2018

In a new paper, Avast researchers Jan Sirmer and Adolf Streda look at how a spam campaign sent via the Necurs botnet was delivering the Flawed Ammyy RAT. As well as publishing the paper, we have also released the video of the reseachers' VB2018 presentation on the same topic.

Read more  

VB2018 video: Behind the scenes of the SamSam investigation

Posted by   Martijn Grooten on   Nov 29, 2018

Today we have published the video of the VB2018 presentation by Andrew Brandt (Sophos) on the SamSam ransomware, which became hot news following the indictment of its two suspected authors yesterday.

Read more  

VB2018 video: Foreverdays: tracking and mitigating threats targeting civil society orgs

Posted by   Martijn Grooten on   Nov 28, 2018

Today, we publish the video of the VB2018 presentation by CitizenLab researchers Masashi Nishihata and John Scott Railton, on threats faced by civil society.

Read more  
Previous1...1415161718...215Next

Search blog

News round-up

October's goings on in the AV industry.
October's goings on in the AV industry. Despite no major malware outbreaks having occurred during last month's VB conference (as has almost seemed a tradition in the past),… https://www.virusbulletin.com/blog/2006/11/news-round/

November

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2006/11/

Spamhaus rests easy

US judge rules against suspending Spamhaus domain.
US judge rules against suspending Spamhaus domain. At the end of a month-long court battle, a US judge has ruled that UK anti-spam advisory organization Spamhaus will not have its… https://www.virusbulletin.com/blog/2006/11/spamhaus-rests-easy/

Sender ID specification released

Microsoft reveals all as part of its Open Specification Promise.
Microsoft reveals all as part of its Open Specification Promise.Microsoft has made its Sender ID Framework specification available as part of its recent Open Specification Promise,… https://www.virusbulletin.com/blog/2006/11/sender-id-specification-released/

New anti-spam group formed

StopSpamAlliance unites international bodies.
StopSpamAlliance unites international bodies. A group of international agencies and organisations have teamed up to launch StopSpamAlliance.org, designed to be a centralised base… https://www.virusbulletin.com/blog/2006/11/new-anti-spam-group-formed/

Phish check interface

Developer interface for checking phishy URLs.
Developer interface for checking phishy URLs. The people behind PhishTank, a collaborative clearing house for data and information about phishing, have revealed a simplified… https://www.virusbulletin.com/blog/2006/11/phish-check-interface/

Sophos engine faults disclosed

iDefense reports file-handling vulnerabilities.
iDefense reports file-handling vulnerabilities. Security researchers at iDefense have released information on four separate bugs in the Sophos anti-virus engine, affecting most… https://www.virusbulletin.com/blog/2006/10/sophos-engine-faults-disclosed/

Two more IE7 bugs downplayed by Microsoft

More phishing issues found, not a big problem says MS.
More phishing issues found, not a big problem says MS. A second bug was spotted late last week in Microsoft's recently-released Internet Explorer 7, which could allow malicious… https://www.virusbulletin.com/blog/2006/10/two-more-ie7-bugs-downplayed-microsoft/

McAfee up, Symantec down in profits

Financial reports differ widely between top security rivals.
Financial reports differ widely between top security rivals. Profits reports for the third quarter of the year show Symantec struggling with disappointing sales in the European… https://www.virusbulletin.com/blog/2006/10/mcafee-symantec-down-profits/

Australian spam firm fined $4.1 million

First case under spam laws brings hefty punishment.
First case under spam laws brings hefty punishment. A company based in Western Australia has been charged A$4.5 million, with another A$1 million levied from its director, after a… https://www.virusbulletin.com/blog/2006/10/australian-spam-firm-fined-4-1-million/

Windows Defender fully released

Microsoft anti-spyware product handed out free.
Microsoft anti-spyware product handed out free. After a lengthy beta period, Microsoft's free anti-spyware product, renamed Windows Defender halfway through its beta cycle, has… https://www.virusbulletin.com/blog/2006/10/windows-defender-fully-released/

Sender ID licence opened up

Microsoft frees up access to anti-spam framework.
Microsoft frees up access to anti-spam framework.Microsoft has put the specifications for the Sender ID and Sender Policy Framework (SPF) email verification system under its 'Open… https://www.virusbulletin.com/blog/2006/10/sender-id-licence-opened/

UK banks failing online users

Report names and shames insecure banking sites - again.
Report names and shames insecure banking sites - again. A report from heise Security, following up on a previous study released a month ago, claims several UK banks are still using… https://www.virusbulletin.com/blog/2006/10/uk-banks-failing-online-users/

Trojan installs Kaspersky AV

Scanner software used to keep out rival malware.
Scanner software used to keep out rival malware. A trojan has been reported in the wild using a genuine AV engine to keep its victims' machines free from other threats. This… https://www.virusbulletin.com/blog/2006/10/trojan-installs-kaspersky-av/

Latest VB100% test announced

Call for products issued for Windows XP x64 test.
Call for products issued for Windows XP x64 test. The latest round of VB 100% certification testing has been announced. The test will be run on the Windows XP Professional x64… https://www.virusbulletin.com/blog/2006/10/latest-test-announced/

Microsoft in multiple security rows

AV firms, Apple and Secunia embroiled in MS spats.
AV firms, Apple and Secunia embroiled in MS spats. Operating system giant Microsoft is engaged on multiple fronts in a series of security-related PR battles. The longest running… https://www.virusbulletin.com/blog/2006/10/microsoft-multiple-security-rows/

IE7 used as phishing lure

Spam campaign tries to hook users with new browser version.
Spam campaign tries to hook users with new browser version. A spam campaign has been spotted using the latest version of Microsoft's web browser, Internet Explorer 7, as bait. The… https://www.virusbulletin.com/blog/2006/10/ie7-used-phishing-lure/

MySpace users targeted by spam campaign

Phishers pose as online contacts to push bogus shopping sites.
Phishers pose as online contacts to push bogus shopping sites. A major spam campaign is bombarding inboxes with mails masquerading as messages from conacts on web social and… https://www.virusbulletin.com/blog/2006/10/myspace-users-targeted-spam-campaign/

MacDonald's serves up spyware

Diners 'rewarded' with infected music players
Diners 'rewarded' with infected music players Japanese customers of global burger giant MacDonald's have been warned that 10,000 MP3 players handed out by the firm as part of a… https://www.virusbulletin.com/blog/2006/10/macdonald-s-serves-spyware/

Another hole found in PowerPoint

Proof-of-concept exploit shows further bug in slideshow software
Proof-of-concept exploit shows further bug in slideshow softwareMicrosoft has issued an alert over a new potential zero-day exploit in its PowerPoint presentation software. The… https://www.virusbulletin.com/blog/2006/10/another-hole-found-powerpoint/

« Previous 1...9293949596...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.