VB Blog

VB2014 paper: Leaving our ZIP undone: how to abuse ZIP to deliver malware apps

Posted by   Virus Bulletin on   Mar 5, 2015

Gregory Panakkal explains that there are different ways of looking at APK files - and that sometimes that can have unintended consequences.

Read more  

FREAK attack takes HTTPS connections back to 1990s security

Posted by   Virus Bulletin on   Mar 4, 2015

Golden keys from the (first) crypto wars have come back to haunt us.

Read more  

TorrentLocker spam has DMARC enabled

Posted by   Virus Bulletin on   Mar 2, 2015

Use of email authentication technique unlikely to bring any advantage.

Read more  

Paper: Script in a lossy stream

Posted by   Virus Bulletin on   Mar 2, 2015

Dénes Óvári explains how to store code in lossily compressed JPEG data.

Read more  

M3AAWG releases BCP document on dealing with child sexual abuse material

Posted by   Virus Bulletin on   Feb 27, 2015

Subject may make many feel uncomfortable, but it is essential that we know how to deal with it.

Read more  

VB2014 paper: Caphaw - the advanced persistent pluginer

Posted by   Virus Bulletin on   Feb 27, 2015

Micky Pun and Neo Tan analyse the banking trojan that is best known for spreading through Skype.

Read more  

Coordinated action takes down Ramnit botnet infrastructure

Posted by   Virus Bulletin on   Feb 26, 2015

Malware remains present on infected machines; 2012 Virus Bulletin paper worth studying.

Read more  

Hacker group takes over Lenovo's DNS

Posted by   Virus Bulletin on   Feb 26, 2015

As emails were sent to wrong servers, DNSSEC might be worth looking into.

Read more  

Almost 50% increase in reported vulnerabilities as non-Windows operating systems lead the table

Posted by   Virus Bulletin on   Feb 25, 2015

Each discovered vulnerability is actually a good news story.

Read more  

Vawtrak trojan spread through malicious Office macros

Posted by   Virus Bulletin on   Feb 24, 2015

Users easily tricked, but plenty of opportunity for the malware to be blocked.

Read more  
Previous1...5758596061...215Next

Search blog

VB2018 preview: The botnet landscape - live threats and steps for mitigation (Small Talk)

In a Small Talk at VB2018, Spamhaus's Simon Forster will present the organization's research into the botnet landscape and will discuss with the audience topics such as how the rise of anonymzation techniques and the hosting of botnets on well-regarded cl…
Whether they're used to send spam, to perform DDoS attacks, or as a proxy network for other kinds of nefarious activities, botnets remain a prominent tool for cybercriminals, and… https://www.virusbulletin.com/blog/2018/09/vb2018-preview-botnet-landscape-live-threats-and-steps-mitigation-small-talk/

Spamhaus report shows many botnet controllers look a lot like legitimate servers

Spamhaus's annual report on botnet activity shows that botherders tend to use popular, legitimate hosting providers, domain registrars and top-level domains when setting up command-and-control servers.
Of all the annual security reports and blog posts that look back at the previous year, that of Spamhaus is one I particularly look forward to, as it always comes with good and… https://www.virusbulletin.com/blog/2018/01/spamhaus-reports-shows-many-botnet-controllers-look-lot-legitimate-servers/

Spamhaus CIO calls for those running open DNS resolvers to be fined

Open DNS resolvers instrumental in many DDoS attacks.
Open DNS resolvers instrumental in many DDoS attacks. At the Cyber Security Summit in London, Richard Cox, CIO of DNS blacklist provider Spamhaus, called on the UK government to… https://www.virusbulletin.com/blog/2013/11/spamhaus-cio-calls-those-running-open-dns-resolvers-be-fined/

Dutchman arrested in Spain for DDoS attacks on Spamhaus

Suspect drove around in 'mobile bunker' to co-ordinate attacks.
Suspect drove around in 'mobile bunker' to co-ordinate attacks. Police in Spain have arrested a 35-year-old Dutchman, believed to be responsible for the DDoS attacks on Spamhaus… https://www.virusbulletin.com/blog/2013/04/dutchman-arrested-spain-ddos-attacks-spamhaus/

Correction to VBSpam results

Spamhaus and SURBL results re-evaluated.
Spamhaus and SURBL results re-evaluated. The most recent VBSpam results incorrectly stated that SURBL failed to detect a blacklisted URL in any of the emails in the Wombat feed of… https://www.virusbulletin.com/blog/2012/11/correction-vbspam-results/

Dutch ISP sues Spamhaus for 'extortion'

Blacklist entries 'unfair and illegal'.
Blacklist entries 'unfair and illegal'. Dutch ISP A2B Internet has sued The Spamhaus Project, claiming the project unfairly blacklisted its IP range. A2B provides the upstream… https://www.virusbulletin.com/blog/2011/10/dutch-isp-sues-spamhaus-extortion/

Bulletproof hosting firm claims legitimacy

Crime-laden Russian service threatens to sue detractors.
Crime-laden Russian service threatens to sue detractors. A notorious Russian firm offering 'bulletproof hosting' - website hosting services with a guarantee that sites will not be… https://www.virusbulletin.com/blog/2007/10/bulletproof-hosting-firm-claims-legitimacy/

Spamhaus $11 million fine thrown out

Appeal court quashes earlier e360 compensation ruling.
Appeal court quashes earlier e360 compensation ruling. Anti-spam operation Spamhaus, previously ordered to pay $11 million to mass-mailing firm e360 Insight after refusing to… https://www.virusbulletin.com/blog/2007/09/spamhaus-11-million-fine-thrown-out/

Spoof Spamhaus ads spammed out

Mail campaign claims to promote spam fighters.
Mail campaign claims to promote spam fighters. Spam-fighting organisation Spamhaus has been subjected to an attack on its reputation this week, with a sizeable campaign of spams… https://www.virusbulletin.com/blog/2007/07/spoof-spamhaus-ads-spammed-out/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.