VB Blog

Paper: Using .NET GUIDs to help hunt for malware

Posted by   Virus Bulletin on   Jun 24, 2015

Tool to extract identifiers incorporated into VirusTotal.

Read more  

NSA, GCHQ found to target anti-virus products

Posted by   Virus Bulletin on   Jun 23, 2015

Agencies looked for vulnerabilities to exploit and for submitted malware samples.

Read more  

Paper: Beta exploit pack: one more piece of crimeware for the infection road!

Posted by   Virus Bulletin on   Jun 19, 2015

Exploit kit currently being tested focuses primarily on Flash Player exploits.

Read more  

Throwback Thursday: Macro Viruses & The Little Virus That Could...

Posted by   Virus Bulletin on   Jun 18, 2015

This Throwback Thursday, we turn the clock back to 1999, when Melissa was causing havoc across the globe and VB presented a series of articles detailing all you ever wanted to know about macro viruses but were afraid to ask.

Read more  

Virus Bulletin announces 'Small Talks' for VB2015

Posted by   Virus Bulletin on   Jun 17, 2015

Smaller, more informal format ideal for discussion and debate.

Read more  

Throwback Thursday: Virus Writers

Posted by   Virus Bulletin on   Jun 11, 2015

This Throwback Thursday, we bring you a series of articles from the archives that looked at virus writers, asking 'who are they?', 'why do they do it?', and other pertinent questions.

Read more  

Vawtrak uses Tor2Web to connect to Tor hidden C&C servers

Posted by   Virus Bulletin on   Jun 11, 2015

Option hides the servers, without having to include a Tor client in the malware.

Read more  

Duqu 2.0 found to target security company

Posted by   Virus Bulletin on   Jun 10, 2015

Advanced malware also targeted venues linked to Iranian nuclear negotiations.

Read more  

London calling!

Posted by   Virus Bulletin on   May 27, 2015

Infosecurity Europe, BSides London and the Security Bloggers Meetup.

Read more  

Paper: On the beat

Posted by   Virus Bulletin on   May 22, 2015

Kevin Williams looks back at UK law enforcement successes at combating cybercrime.

Read more  
Previous1...5354555657...215Next

Search blog

VB2016 paper: Modern attacks on Russian financial institutions

Today, we publish the VB2016 paper and presentation (recording) by ESET researchers Jean-Ian Boutin and Anton Cherepanov, in which they look at sophisticated attacks against Russian financial institutions.
Today, we publish the VB2016 paper "Modern attacks on Russian financial institutions" (here in HTML format and here in PDF format) by ESET researchers Jean-Ian Boutin and Anton… https://www.virusbulletin.com/blog/2016/december/vb2016-paper-modern-attacks-russian-financial-institutions/

Grum botnet's command-and-control servers shut down

Spam-sending botnet believed to be third largest in the world.
Spam-sending botnet believed to be third largest in the world. International co-operation between a number of parties has led to all command-and-control servers of the 'Grum'… https://www.virusbulletin.com/blog/2012/07/grum-botnet-s-command-and-control-servers-shut-down/

Cybercriminals frustrated with botnet trackers

Drastic measures discussed by users of online forum.
Drastic measures discussed by users of online forum. Russian cybercriminals are willing to go to great lengths to frustrate services that hinder botnets created with the ZeuS and… https://www.virusbulletin.com/blog/2011/03/cybercriminals-frustrated-botnet-trackers/

Spammers move from China to Russia

Stricter rules on registering .cn domains leads to increase in malicious .ru domains.
Stricter rules on registering .cn domains leads to increase in malicious .ru domains. A change in the rules of the organization responsible for registering .cn domains has resulted… https://www.virusbulletin.com/blog/2010/02/spammers-move-china-russia/

Russian Business Network leaves Russia

Leading cybercrime hosting hub moves business to fresh pastures.
Leading cybercrime hosting hub moves business to fresh pastures. The notorious Russian Business Network (RBN), recently making headlines for the massive amounts of malicious and… https://www.virusbulletin.com/blog/2007/11/russian-business-network-leaves-russia/

St. Petersburg US Consulate website hacked

Malware served by official government site.
Malware served by official government site. Web-watchers at Sophos have reported spotting malware hosted on the website of the US Consulate in St. Petersburg, using obfuscated… https://www.virusbulletin.com/blog/2007/09/st-petersburg-us-consulate-website-hacked/

Estonian websites suffer wave of DoS attacks

Baltic republic accuses Russia of cyber-warfare.
Baltic republic accuses Russia of cyber-warfare. A wave of denial of service (DoS) attacks on Estonian websites has prompted the Estonian government to accuse its neighbour of… https://www.virusbulletin.com/blog/2007/05/estonian-websites-suffer-wave-dos-attacks/

DoS attacks support political unrest

Estonia rioting backed up by attacks on government websites.
Estonia rioting backed up by attacks on government websites. Severe rioting in Estonia, sparked by anger over the removal of a Russian monument from a prominent war memorial, has… https://www.virusbulletin.com/blog/2007/05/dos-attacks-support-political-unrest/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.