VB Blog

VB2014 Paper: Well, that escalated quickly. From penny-stealing malware to multi-million-dollar heists, a quick overview of the Bitcoin bonanza in the digital era

Posted by   Virus Bulletin on   Nov 4, 2014

Santiago Pontiroli takes us on a rollercoaster ride through cryptocurrency land.

Read more  

The VB2014 presentation you never saw. Early launch Android malware: your phone is 0wned

Posted by   Virus Bulletin on   Oct 31, 2014

Malicious apps may have more privileges than security software.

Read more  

CVE-2012-0158 continues to be used in targeted attacks

Posted by   Virus Bulletin on   Oct 31, 2014

30-month old vulnerability still a popular way to infect systems.

Read more  

Paper: Invading the core: iWorm's infection vector and persistence mechanism

Posted by   Virus Bulletin on   Oct 30, 2014

Malware spreads through infected torrent, then maintains persistence on the system.

Read more  

New IcoScript variant uses Gmail drafts for C&C communication

Posted by   Virus Bulletin on   Oct 29, 2014

Switch likely to make modular malware even stealthier.

Read more  

VB2014 paper: Hiding the network behind the network. Botnet proxy business model

Posted by   Virus Bulletin on   Oct 28, 2014

Cristina Vatamanu and her colleagues describe how botherders keep their C&C servers hidden.

Read more  

VB2014 paper: Methods of malware persistence on Mac OS X

Posted by   Virus Bulletin on   Oct 27, 2014

'KnockKnock' tool made available to the public.

Read more  

Tor exit node found to turn downloaded binaries into malware

Posted by   Virus Bulletin on   Oct 24, 2014

Tor provides anonymity, not security, hence using HTTPS is essential.

Read more  

VB2014 paper: Exposing Android white collar criminals

Posted by   Virus Bulletin on   Oct 22, 2014

Luis Corrons dives into the world of shady Android apps.

Read more  

Black Hat Europe - day 2

Posted by   Virus Bulletin on   Oct 20, 2014

IPv6 versus IDPS, XSS in WYSIWYG editors, and reflected file downloads.

Read more  
Previous1...6364656667...215Next

Search blog

June

https://www.virusbulletin.com/blog/2024/06/

VBSpam tests to be executed under the AMTSO framework

VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework.
VB is excited to announce that, starting from the Q3 test, all VBSpam tests of email security products will be executed under the AMTSO framework. The Anti-Malware Testing… https://www.virusbulletin.com/blog/2024/06/vbspam-tests-be-executed-under-amtso-framework/

April

https://www.virusbulletin.com/blog/2024/04/

In memoriam: Prof. Ross Anderson

We were very sorry to learn of the passing of Professor Ross Anderson a few days ago.
We were very sorry to learn of the passing of Professor Ross Anderson a few days ago. Ross Anderson was Professor of Security Engineering at Cambridge University and Edinburgh… https://www.virusbulletin.com/blog/2024/04/memoriam-prof-ross-anderson/

In memoriam: Dr Alan Solomon

We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week.
We were very sorry to learn of the passing of industry pioneer Dr Alan Solomon earlier this week. Alan Solomon was the eponymous creator of one of the world's first anti-virus… https://www.virusbulletin.com/blog/2024/02/memoriam-dr-alan-solomon/

February

https://www.virusbulletin.com/blog/2024/02/

2024

https://www.virusbulletin.com/blog/2024/

October

https://www.virusbulletin.com/blog/2023/10/

2023

https://www.virusbulletin.com/blog/2023/

New paper: Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

In a new paper, researchers Aditya K Sood and Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited in order to gather threat intelligence, and present a model of mobile AppInjects.
Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects Read the paper (HTML) Download the paper (PDF)   Android botnets are a formidable… https://www.virusbulletin.com/blog/2023/10/new-paper-nexus-android-banking-botnet-compromising-cc-panels-and-dissecting-mobile-appinjects/

New paper: Collector-stealer: a Russian origin credential and information extractor

In a new paper, F5 researchers Aditya K Sood and Rohit Chaturvedi present a 360 analysis of Collector-stealer, a Russian-origin credential and information extractor.
Collector-stealer, a piece of malware of Russian origin, is heavily used on the Internet to exfiltrate sensitive data from end-user systems and store it in its C&C panels. In a… https://www.virusbulletin.com/blog/2021/12/new-paper-collector-stealer-russian-origin-credential-and-information-extractor/

December

https://www.virusbulletin.com/blog/2021/12/

November

https://www.virusbulletin.com/blog/2021/11/

VB2021 localhost videos available on YouTube

VB has made all VB2021 localhost presentations available on the VB YouTube channel, so you can now watch - and share - any part of the conference freely and without registration.
Today, VB has made all VB2021 localhost presentations available on VB's YouTube channel, so you can now watch – and share – any part of the conference freely and without… https://www.virusbulletin.com/blog/2021/11/vb2021-localhost-videos-available-youtube/

October

https://www.virusbulletin.com/blog/2021/10/

VB2021 localhost is over, but the content is still available to view!

VB2021 localhost - VB's second virtual conference - took place last week, but you can still watch all the presentations.
VB2021 localhost - VB's second virtual, and entirely free to attend VB conference - took place last week and was a great success. If you missed it, don't worry, the… https://www.virusbulletin.com/blog/2021/10/vb2021-localhost-over-content-still-available-view/

August

https://www.virusbulletin.com/blog/2021/08/

VB2021 localhost call for last-minute papers

The call for last-minute papers for VB2021 localhost is now open. Submit before 20 August to have your paper considered for one of the slots reserved for 'hot' research!
Have you analysed a brand new online threat? Are you involved in cutting edge security research? Are you tasked with securing systems and fending off attacks and developing new… https://www.virusbulletin.com/blog/2021/08/vb2021-localhost-call-last-minute-papers/

New article: Run your malicious VBA macros anywhere!

Kurt Natvig explains how he recompiled malicious VBA macro code to valid harmless Python 3.x code.
Office documents have over many decades been used to launch malware, often through macros, embedded content or exploits. Researcher Kurt Natvig wanted to understand whether… https://www.virusbulletin.com/blog/2021/04/new-article-run-your-malicious-vba-macros-anywhere/

April

https://www.virusbulletin.com/blog/2021/04/

« Previous 1234567...120 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.