VB Blog

Five tips for submitting to Calls for Papers

Posted by   Martijn Grooten on   Aug 9, 2017

With the VB2017 Call for Papers out, here are five tips to increase your chances of getting your submission accepted.

Read more  

The WannaCry kill switch wasn't inserted to make someone a hero

Posted by   Martijn Grooten on   Aug 8, 2017

Following the arrest of WannaCry hero Marcus Hutchings, suggestions have been made that he was behind the WannaCry malware itself, and that he inserted the kill switch to make himself a hero. This seems highly unlikely.

Read more  

Throwback Thursday: Ten memorable Virus Bulletin conference presentations - part 1

Posted by   Martijn Grooten on   Aug 3, 2017

In a two-part blog post series, we look back at ten memorable VB conference presentations from the past ten years.

Read more  

Worms wiggling inside your networks are a lot harder to stop

Posted by   Martijn Grooten on   Aug 3, 2017

The authors of the Trickbot banking trojan seem to have taken note of the use of SMB by WannaCry and (Not)Petya and have added an (experimental) module that uses SMB for lateral movement.

Read more  

VB2017 drinks reception to be hosted in Madrid's unique Geographic Club

Posted by   Martijn Grooten on   Aug 1, 2017

To give those attending VB2017 Madrid a chance to experience a little bit of the host city, the VB2017 drinks reception will be held at the unique and fascinating Geographic Club.

Read more  

By removing VPNs from its Chinese App Store, Apple turns its biggest security asset against its users

Posted by   Martijn Grooten on   Aug 1, 2017

To comply with Chinese laws, Apple has removed all iOS VPN apps from its Chinese app store. This means that the company uses iOS's strongest security asset, its tightly controlled App Store, against its own users.

Read more  

VB2017 Small Talks and reserve papers announced

Posted by   Martijn Grooten on   Jul 28, 2017

Today we announce the first two Small Talks for the VB2017 programme: ENISA will provide its perspective on the WannaCry outbreak and the lessons learned from it, while David Harley will talk about the past and present of security product testing.

Read more  

NoMoreRansom's first birthday demonstrates importance of collaboration

Posted by   Martijn Grooten on   Jul 27, 2017

This week the NoMoreRansom project celebrated its first birthday. It has already helped many victims of ransomware with advice and tools and is an excellent example of collaboration between private and public partners in IT security.

Read more  

VB2017 call for last-minute papers opened

Posted by   Martijn Grooten on   Jul 26, 2017

Today, we open the call for last-minute papers for VB2017. Submit before 3 September to have your abstract considered for one of the ten slots reserved for 'hot' research.

Read more  

Five reasons to come to VB2017 in Madrid

Posted by   Martijn Grooten on   Jul 25, 2017

We're not ones to make bold claims about our conference, and we suggest you ask past attendees for their opinion, but here are five reasons why we think you should come to VB2017 in Madrid.

Read more  
Previous1...3233343536...215Next

Search blog

VB2018 paper: The dark side of WebAssembly

Today, we publish the VB2018 paper by Symantec researchers Aishwarya Lonkar and Siddhesh Chandrayan on the security risks that come with WebAssembly.
With this year's very successful Virus Bulletin Conference (VB2018) now behind us, we plan to continue the tradition of publishing most of the papers and videos of the… https://www.virusbulletin.com/blog/2018/10/vb2018-paper-dark-side-webassembly/

VB2017 video: Turning Trickbot: decoding an encrypted command-and-control channel

Trickbot, a banking trojan which appeared this year, seems to be a new, more modular, and more extensible malware descendant of the notorious Dyre botnet trojan. At VB2017, Symantec researcher Andrew Brandt presented a walkthrough of a typical Trickbot in…
Trickbot, first reported a year ago by Malwarebytes researcher Jérôme Segura as the successor of Dyre/Dyreza, has become perhaps the most important banking trojan of 2017. It is… https://www.virusbulletin.com/blog/2017/11/vb2017-video-turning-trickbot-decoding-encrypted-command-and-control-channel/

VB2016 paper: One-Click Fileless Infection

Symantec researchers Himanshu Anand and Chastine Menrige explain how a single click can lead to a compromised machine, without malware ever being stored on disk.
Over the last few years, we have seen a sharp increase in 'fileless' infections, where a machine is compromised without a malicious file ever being written to disk. Though not… https://www.virusbulletin.com/blog/2017/03/vb2016-paper-one-click-fileless-infection/

Symantec quietly retires PC Tools security product lines

Sales of Spyware Doctor and other security products end, support to continue for existing users.
Sales of Spyware Doctor and other security products end, support to continue for existing users.Symantec has quietly announced the end of life the of PC Tools security product… https://www.virusbulletin.com/blog/2013/05/symantec-quietly-retires-pc-tools-security-product-lines/

From spear phishing to watering holes

Symantec reports increase in 'watering hole attacks'.
Symantec reports increase in 'watering hole attacks'. Imagine that for some reason you wanted to gain access to my computer. One thing you could do is send me an email with some… https://www.virusbulletin.com/blog/2012/09/spear-phishing-watering-holes/

'Nitro attacks' continue

PoisonIvy trojan sent attached to email warning about the same trojan.
PoisonIvy trojan sent attached to email warning about the same trojan. Researchers at Symantec report that the 'Nitro attacks', which target a number of large companies, many of… https://www.virusbulletin.com/blog/2011/12/nitro-attacks-continue/

Spammers exploit internationalized domain names

Non-Latin characters in URLs used to trick filters.
Non-Latin characters in URLs used to trick filters. By using internationalized domain names (IDN), spammers manage to avoid detection of URLs in their messages. IDNs were… https://www.virusbulletin.com/blog/2011/03/spammers-exploit-internationalized-domain-names/

Welsh 419 scam

Email from Welsh-speaking Kuwaiti widow indicative of more targeted spam.
Email from Welsh-speaking Kuwaiti widow indicative of more targeted spam. Email users in Wales who received a recent 419 scam will have been surprised to find the message -… https://www.virusbulletin.com/blog/2011/02/welsh-419-scam/

AV-Test.org issues latest round of testing results

Symantec and Microsoft outdo Trend and McAfee in live tests.
Symantec and Microsoft outdo Trend and McAfee in live tests. Independent testing organisation AV-Test.org has released its latest round of test results in a simplified format,… https://www.virusbulletin.com/blog/2010/08/av-test-org-issues-latest-round-testing-results/

Symantec to acquire VeriSign business

Vendor splashes out more cash on authentication.
Vendor splashes out more cash on authentication.Symantec, the AV vendor with a reputation for snapping up other companies, has announced its purchase of VeriSign's authentication… https://www.virusbulletin.com/blog/2010/05/symantec-acquire-verisign-business/

Symantec buys key pair of encryption firms

PGP and GuardianEdge snapped up in surprise dual acquisition.
PGP and GuardianEdge snapped up in surprise dual acquisition.Symantec has announced the acquisition of two separate firms specialising in encryption and email security. The deals… https://www.virusbulletin.com/blog/2010/05/symantec-buys-key-pair-encryption-firms/

Microsoft steps into free AV market

Security Essentials release creates expected storm of words.
Security Essentials release creates expected storm of words.Microsoft's release of its free Security Essentials product this week sparked the expected barrage of views and opinions… https://www.virusbulletin.com/blog/2009/10/microsoft-steps-free-av-market/

Banking sector confuses users over online safety

Leftfield AV detection scores used to promote ID theft tool.
Leftfield AV detection scores used to promote ID theft tool. With online banking an increasingly important way of interacting with our banks, the security of online transactions is… https://www.virusbulletin.com/blog/2009/04/banking-sector-confuses-users-over-online-safety/

AV-Comparatives releases latest detection figures

Large collection test shows major improvement from AV giants.
Large collection test shows major improvement from AV giants. Independent testing organisation AV-Comparatives has released its latest bi-annual detection test figures, with 17… https://www.virusbulletin.com/blog/2009/03/av-comparatives-releases-latest-detection-figures/

Symantec slip sparks suspicion, spam

Update error leads to conspiracy theories and exploitation of fears.
Update error leads to conspiracy theories and exploitation of fears. A faulty update issued to some users of Symantec's Norton product line yesterday has led to an explosion of… https://www.virusbulletin.com/blog/2009/03/symantec-slip-sparks-suspicion-spam/

MessageLabs acquired by Symantec

Acquisition deal valued at $695m.
Acquisition deal valued at $695m. Security industry heavyweight Symantec has announced a definitive agreement to acquire software-as-a-service security specialist MessageLabs.… https://www.virusbulletin.com/blog/2008/10/messagelabs-acquired-symantec/

Symantec to acquire PC Tools

Industry giant adds spyware specialist to growing portfolio.
Industry giant adds spyware specialist to growing portfolio. Security industry behemoth Symantec has announced the planned acquisition of PC Tools, the Australia-based company… https://www.virusbulletin.com/blog/2008/08/symantec-acquire-pc-tools/

QuickTime flaw could open Windows PCs to hackers

Firefox users most vulnerable; Internet Explorer users should be wary too.
Firefox users most vulnerable; Internet Explorer users should be wary too. Polish security researcher Krystian Kloskowski has published a proof-of-concept exploit for a… https://www.virusbulletin.com/blog/2007/11/quicktime-flaw-could-open-windows-pcs-hackers/

Symantec joins data leak frenzy

Vontu purchase latest move in data protection trend.
Vontu purchase latest move in data protection trend.Symantec has announced the $350 million purchase of data leak prevention firm Vontu, following several similar moves by major… https://www.virusbulletin.com/blog/2007/11/symantec-joins-data-leak-frenzy/

Word for Mac exploit spotted

Patch Tuesday flaw targeted by vulnerability.
Patch Tuesday flaw targeted by vulnerability. A vulnerability in the Apple Mac version of Microsoft Word, covered by a patch in this month's Patch Tuesday security update, has been… https://www.virusbulletin.com/blog/2007/10/word-mac-exploit-spotted/

« Previous 12 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.