VB Blog

Virus Bulletin at RSA

Posted by   Martijn Grooten on   Apr 13, 2018

Next week, VB Editor Martijn Grooten will be at the RSA Conference in San Francisco.

Read more  

Broad-ranging and international VB2018 programme announced

Posted by   Martijn Grooten on   Apr 11, 2018

VB is excited to reveal the details of an interesting and diverse programme for VB2018, the 28th Virus Bulletin International Conference, which takes place 3-5 October in Montreal, Canada.

Read more  

Netflix issue shows email verification really does matter

Posted by   Martijn Grooten on   Apr 10, 2018

A clever trick taking advantage of the fact that Gmail ignores dots in email addresses could be used to trick someone into paying for your Netflix subscription - demonstrating the importance of confirmed opt-in.

Read more  

VB2017 paper: Exploring the virtual worlds of advergaming

Posted by   Martijn Grooten on   Apr 10, 2018

At VB2017 in Madrid, Malwarebytes' Chris Boyd presented a paper in which he looked at various aspects of advergaming, from unreadable EULAs to fake programs that promise to block ads. Today, we publish both the paper and the recording of Chris's presentation.

Read more  

New paper: Distinguishing between malicious app collusion and benign app collaboration: a machine-learning approach

Posted by   Martijn Grooten on   Mar 27, 2018

Two or more mobile apps, viewed independently, may not appear to be malicious - but in combination, they could become harmful by exchanging information with one another and by performing malicious activities together. Today, we publish a new paper by a group of researchers affiliated with various UK universities and companies, which looks at how machine-learning methods can be used to detect app collusions.

Read more  

VB2016 paper: Wild Android collusions

Posted by   Martijn Grooten on   Mar 26, 2018

At VB2016 in Denver, Jorge Blasco presented a paper (co-written with Thomas M. Chen, Igor Muttik and Markus Roggenbach), in which he discussed the concept of app collusion - where two (or more) apps installed on the same device work together to collect and extract data from the device - and presented discoveries of colluding code in many in-the-wild apps. Today, we publish both the paper and the recording of Jorge's presentation.

Read more  

VB2017 paper: The life story of an IPT - Inept Persistent Threat actor

Posted by   Martijn Grooten on   Mar 19, 2018

At VB2017 in Madrid, Polish security researcher and journalist Adam Haertlé presented a paper about a very inept persistent threat. Today, we publish both the paper and the recording of Adam's presentation.

Read more  

Five reasons to submit a VB2018 paper this weekend

Posted by   Martijn Grooten on   Mar 16, 2018

The call for papers for VB2018 closes on 18 March, and while we've already received many great submissions, we still want more! Here are five reasons why you should submit a paper this weekend.

Read more  

First partners of VB2018 announced

Posted by   Martijn Grooten on   Mar 15, 2018

We are excited to announce the first six companies to partner with VB2018.

Read more  

VB2018: looking for technical and non-technical talks

Posted by   Martijn Grooten on   Mar 9, 2018

We like to pick good, solid technical talks for the VB conference programme, but good talks don't have to be technical and we welcome less technical submissions just as much.

Read more  
Previous1...2223242526...215Next

Search blog

VB2018 paper: The dark side of WebAssembly

Today, we publish the VB2018 paper by Symantec researchers Aishwarya Lonkar and Siddhesh Chandrayan on the security risks that come with WebAssembly.
With this year's very successful Virus Bulletin Conference (VB2018) now behind us, we plan to continue the tradition of publishing most of the papers and videos of the… https://www.virusbulletin.com/blog/2018/10/vb2018-paper-dark-side-webassembly/

VB2017 video: Turning Trickbot: decoding an encrypted command-and-control channel

Trickbot, a banking trojan which appeared this year, seems to be a new, more modular, and more extensible malware descendant of the notorious Dyre botnet trojan. At VB2017, Symantec researcher Andrew Brandt presented a walkthrough of a typical Trickbot in…
Trickbot, first reported a year ago by Malwarebytes researcher Jérôme Segura as the successor of Dyre/Dyreza, has become perhaps the most important banking trojan of 2017. It is… https://www.virusbulletin.com/blog/2017/11/vb2017-video-turning-trickbot-decoding-encrypted-command-and-control-channel/

VB2016 paper: One-Click Fileless Infection

Symantec researchers Himanshu Anand and Chastine Menrige explain how a single click can lead to a compromised machine, without malware ever being stored on disk.
Over the last few years, we have seen a sharp increase in 'fileless' infections, where a machine is compromised without a malicious file ever being written to disk. Though not… https://www.virusbulletin.com/blog/2017/03/vb2016-paper-one-click-fileless-infection/

Symantec quietly retires PC Tools security product lines

Sales of Spyware Doctor and other security products end, support to continue for existing users.
Sales of Spyware Doctor and other security products end, support to continue for existing users.Symantec has quietly announced the end of life the of PC Tools security product… https://www.virusbulletin.com/blog/2013/05/symantec-quietly-retires-pc-tools-security-product-lines/

From spear phishing to watering holes

Symantec reports increase in 'watering hole attacks'.
Symantec reports increase in 'watering hole attacks'. Imagine that for some reason you wanted to gain access to my computer. One thing you could do is send me an email with some… https://www.virusbulletin.com/blog/2012/09/spear-phishing-watering-holes/

'Nitro attacks' continue

PoisonIvy trojan sent attached to email warning about the same trojan.
PoisonIvy trojan sent attached to email warning about the same trojan. Researchers at Symantec report that the 'Nitro attacks', which target a number of large companies, many of… https://www.virusbulletin.com/blog/2011/12/nitro-attacks-continue/

Spammers exploit internationalized domain names

Non-Latin characters in URLs used to trick filters.
Non-Latin characters in URLs used to trick filters. By using internationalized domain names (IDN), spammers manage to avoid detection of URLs in their messages. IDNs were… https://www.virusbulletin.com/blog/2011/03/spammers-exploit-internationalized-domain-names/

Welsh 419 scam

Email from Welsh-speaking Kuwaiti widow indicative of more targeted spam.
Email from Welsh-speaking Kuwaiti widow indicative of more targeted spam. Email users in Wales who received a recent 419 scam will have been surprised to find the message -… https://www.virusbulletin.com/blog/2011/02/welsh-419-scam/

AV-Test.org issues latest round of testing results

Symantec and Microsoft outdo Trend and McAfee in live tests.
Symantec and Microsoft outdo Trend and McAfee in live tests. Independent testing organisation AV-Test.org has released its latest round of test results in a simplified format,… https://www.virusbulletin.com/blog/2010/08/av-test-org-issues-latest-round-testing-results/

Symantec to acquire VeriSign business

Vendor splashes out more cash on authentication.
Vendor splashes out more cash on authentication.Symantec, the AV vendor with a reputation for snapping up other companies, has announced its purchase of VeriSign's authentication… https://www.virusbulletin.com/blog/2010/05/symantec-acquire-verisign-business/

Symantec buys key pair of encryption firms

PGP and GuardianEdge snapped up in surprise dual acquisition.
PGP and GuardianEdge snapped up in surprise dual acquisition.Symantec has announced the acquisition of two separate firms specialising in encryption and email security. The deals… https://www.virusbulletin.com/blog/2010/05/symantec-buys-key-pair-encryption-firms/

Microsoft steps into free AV market

Security Essentials release creates expected storm of words.
Security Essentials release creates expected storm of words.Microsoft's release of its free Security Essentials product this week sparked the expected barrage of views and opinions… https://www.virusbulletin.com/blog/2009/10/microsoft-steps-free-av-market/

Banking sector confuses users over online safety

Leftfield AV detection scores used to promote ID theft tool.
Leftfield AV detection scores used to promote ID theft tool. With online banking an increasingly important way of interacting with our banks, the security of online transactions is… https://www.virusbulletin.com/blog/2009/04/banking-sector-confuses-users-over-online-safety/

AV-Comparatives releases latest detection figures

Large collection test shows major improvement from AV giants.
Large collection test shows major improvement from AV giants. Independent testing organisation AV-Comparatives has released its latest bi-annual detection test figures, with 17… https://www.virusbulletin.com/blog/2009/03/av-comparatives-releases-latest-detection-figures/

Symantec slip sparks suspicion, spam

Update error leads to conspiracy theories and exploitation of fears.
Update error leads to conspiracy theories and exploitation of fears. A faulty update issued to some users of Symantec's Norton product line yesterday has led to an explosion of… https://www.virusbulletin.com/blog/2009/03/symantec-slip-sparks-suspicion-spam/

MessageLabs acquired by Symantec

Acquisition deal valued at $695m.
Acquisition deal valued at $695m. Security industry heavyweight Symantec has announced a definitive agreement to acquire software-as-a-service security specialist MessageLabs.… https://www.virusbulletin.com/blog/2008/10/messagelabs-acquired-symantec/

Symantec to acquire PC Tools

Industry giant adds spyware specialist to growing portfolio.
Industry giant adds spyware specialist to growing portfolio. Security industry behemoth Symantec has announced the planned acquisition of PC Tools, the Australia-based company… https://www.virusbulletin.com/blog/2008/08/symantec-acquire-pc-tools/

QuickTime flaw could open Windows PCs to hackers

Firefox users most vulnerable; Internet Explorer users should be wary too.
Firefox users most vulnerable; Internet Explorer users should be wary too. Polish security researcher Krystian Kloskowski has published a proof-of-concept exploit for a… https://www.virusbulletin.com/blog/2007/11/quicktime-flaw-could-open-windows-pcs-hackers/

Symantec joins data leak frenzy

Vontu purchase latest move in data protection trend.
Vontu purchase latest move in data protection trend.Symantec has announced the $350 million purchase of data leak prevention firm Vontu, following several similar moves by major… https://www.virusbulletin.com/blog/2007/11/symantec-joins-data-leak-frenzy/

Word for Mac exploit spotted

Patch Tuesday flaw targeted by vulnerability.
Patch Tuesday flaw targeted by vulnerability. A vulnerability in the Apple Mac version of Microsoft Word, covered by a patch in this month's Patch Tuesday security update, has been… https://www.virusbulletin.com/blog/2007/10/word-mac-exploit-spotted/

« Previous 12 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.