Bulletin

An indispensable source of reference for anyone concerned with computer security, the Bulletin is the forum through which leading security researchers publish the latest security research and information in a bid to share knowledge with the security community. Publications cover the latest threats, new developments and techniques in the security landscape, opinions from respected members of the industry, and more. The Bulletin archives offer informative articles going back to 1989. Our editorial team is happy to hear from anyone interested in submitting a paper for publication.

Part 2: Interaction with a black hole

Gabor Szappanos (Sophos)

Gabor Szappanos started with two fairly incomplete sources of information about the latest Blackhole server version: the server-side source code from old versions and the outgoing flow of malware. He describes how, using these sources, he was able to…

Read more  

Compromised library

The Floxif DLL file infector implements both anti‑static- and anti-dynamic-analysis techniques. Raul Alvarez describes how.

Read more  

Is our viruses learning?

It’s rare to see a virus advertised as demonstrating machine learning in any form, but W32/Grimgribber does just that. Peter Ferrie has the details.

Read more  

Ramnit bot

First discovered in around April 2010, Ramnit is now not only a file infector that infects Windows Portable Executable files (.exe, .scr and .dll files) and HTML documents, but also a multi-component bot. Chao Chen takes a deep dive into Ramnit,…

Read more  

Tracking the 2012 Sasfis campaign

Micky Pun (Fortinet)

Micky Pun unveils all the important nuts and bolts of the latest instalment of the Sasfis botnet by analysing its packers, core payloads and botnet operations.

Read more  

Dissecting Winlocker – ransomware goes centralized

Winlocker, aka Gimemo, has revolutionized the design of ransomware - all the infected machines are controlled centrally using two C&C panels. Aditya Sood and colleagues discuss the design and behaviour of the Winlocker ransomware.

Read more  

The cost of being scared safe

Stephen Cobb (ESET)

‘The throttling effect of fear on consumer uptake of online shopping and banking is certainly real.' Stephen Cobb, ESET.

Read more  

Hacker forums provide clues to likely attack techniques

Much to be learned from monitoring hacker forums.

Read more  

ZeroAccess infects 2.2 million

2.2 million home networks infected with ZeroAccess worldwide.

Read more  

Three arrests in phishing case

UK authorities arrest three men in London.

Read more  
Previous1...4243444546...114Next

Search the Bulletin


Bulletin Archive

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.