Virus Bulletin issue archive
The Bulletin is an indispensable source of reference for anyone concerned with the prevention, detection and removal of computer threats, including but not limited to malware and spam.
Between 1989 and 2014, VB published the monthly, subscriber-based Virus Bulletin magazine. The Bulletin is a continuation of that publication, but with more frequent releases - the Bulletin is available free of charge and requires no registration.
Virus Bulletin - June 2014
Share and share alike (comment); Wapomi (malware analysis); The curse of Necurs, part 3 (malware analysis); Sinowal banking trojan (malware analysis); Rogue Code (book review); Greetz from academe: Will research for food (spotlight); Fuzzing everything in 2014 for 0-day vulnerability discovery (feature); VB100 comparative review on Windows Server 2012 (comparative review)
Virus Bulletin - May 2014
A grown-up industry (comment); Neurevt botnet: new generation (malware analysis); Anatomy of Turla exploits (malware analysis); The curse of Necurs, part 2 (malware analysis); On cyber investigations. Case study: a money transfer system robbery (feature); Greetz from academe: film at eleven (spotlight); May 2014 VBSpam comparative review (comparative review)
Virus Bulletin - April 2014
Threat intelligence sharing: tying one hand behind our backs (comment); The shape of things to come (announcement); The curse of Necurs, part 1 (malware analysis); More fast of more dirty? (malware analysis); Tofsee botnet (malware analysis); Back to VBA (technical feature); Is the IT security industry up to the new challenges to come? (commentary); Greetz from academe: No place to Hyde (spotlight);
Virus Bulletin - March 2014
Making the case for incident response (comment); A short visit with a virus (malware analysis); ProxyCB, a spam proxy under the radar (malware analysis); Solarbot botnet (malware analysis); Not Expir-ed yet (malware analysis); BYOT: Bring Your Own Target (technical feature); Greetz from academe: Censored (spotlight);
Virus Bulletin - February 2014
It is time for defenders to go on the offence (comment); Getting one's hands dirty (malware analysis); Salted algorithm - part 2 (malware analysis); Inside W32.Xpaj.B's infection - part 2 (malware analysis); Needle in a haystack (feature); Don't forget to write (book review); Greetz from academe: Full frontal (spotlight);
Virus Bulletin - January 2014
The AV industry in the post-Snowden era (comment); Medfos - an all-purpose redirector (malware analysis); Salted algorithm - part 1 (malware analysis); Inside W32.Xpaj.B's infection - part 1 (malware analysis); Greetz from academe: Ringing in the new (spotlight); SGX: the good, the bad, and the downright ugly (feature); Effusion - a new sophisticated injector for Nginx web servers (feature);
Latest articles:
Aditya Sood & Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited to compromise the C&C panel in order to gather threat intelligence, and present a model of mobile AppInjects.
TeamTNT is known for attacking insecure and vulnerable Kubernetes deployments in order to infiltrate organizations’ dedicated environments and transform them into attack launchpads. In this article Aditya Sood presents a new module introduced by…
Collector-stealer, a piece of malware of Russian origin, is heavily used on the Internet to exfiltrate sensitive data from end-user systems and store it in its C&C panels. In this article, researchers Aditya K Sood and Rohit Chaturvedi present a 360…
In 1989, Joe Wells encountered his first virus: Jerusalem. He disassembled the virus, and from that moment onward, was intrigued by the properties of these small pieces of self-replicating code. Joe Wells was an expert on computer viruses, was partly…
Kurt Natvig wanted to understand whether it’s possible to recompile VBA macros to another language, which could then easily be ‘run’ on any gateway, thus revealing a sample’s true nature in a safe manner. In this article he explains how he recompiled…
