VB Blog

VB2019 video: Thwarting Emotet email conversation thread hijacking with clustering

Posted by   Martijn Grooten on   Nov 29, 2019

At VB2019 in London, ZEROSPAM researchers Pierre-Luc Vaudry and Olivier Coutu discussed how email clustering could be used to detect malicious Emotet emails that hijacked existing email threads. Today we publish the recording of their presentation.

Read more  

VB2019 paper: A vine climbing over the Great Firewall: a long-term attack against China

Posted by   Martijn Grooten on   Nov 28, 2019

Today we publish a VB2019 paper from Lion Gu and Bowen Pan from the Qi An Xin Threat Intelligence Center in China in which they analysed an APT group dubbed 'Poison Vine', which targeted various government, military and research institutes in China.

Read more  

VB2019 paper: Fantastic Information and Where to Find it: A guidebook to open-source OT reconnaissance

Posted by   Martijn Grooten on   Nov 22, 2019

A VB2019 paper by FireEye researcher Daniel Kapellmann Zafra explained how open source intelligence (OSINT) can be used to learn crucial details of the inner workings of many a system. Today we publish Daniel's paper and the recording of his presentation.

Read more  

VB2019 paper: Different ways to cook a crab: GandCrab Ransomware-as-a-Service (RaaS) analysed in depth

Posted by   Martijn Grooten on   Nov 21, 2019

Though active for not much longer than a year, GandCrab had been one of the most successful ransomware operations. In a paper presented at VB2019 in London, McAfee researchers John Fokker and Alexandre Mundo looked at the malware code, its evolution and the affiliate scheme behind it. Today we publish both their paper and the recording of their presentation.

Read more  

VB2019 paper: Domestic Kitten: an Iranian surveillance program

Posted by   Martijn Grooten on   Nov 18, 2019

At VB2019 in London, Check Point researchers Aseel Kayal and Lotem Finkelstein presented a paper detailing an Iranian operation they named 'Domestic Kitten' that used Android apps for targeted surveillance. Today we publish their paper and the video of their presentation.

Read more  

VB2019 video: Discretion in APT: recent APT attack on crypto exchange employees

Posted by   Martijn Grooten on   Nov 18, 2019

At VB2019 in London, LINE's HeungSoo Kang explained how cryptocurrency exchanges had been attacked using Firefox zero-days. Today, we publish the video of his presentation.

Read more  

VB2019 paper: DNS on fire

Posted by   Martijn Grooten on   Nov 7, 2019

In a paper presented at VB2019, Cisco Talos researchers Warren Mercer and Paul Rascagneres looked at two recent attacks against DNS infrastructure: DNSpionage and Sea Turtle. Today we publish their paper and the recording of their presentation.

Read more  

German Dridex spam campaign is unfashionably large

Posted by   Martijn Grooten on   Nov 6, 2019

VB has analysed a malicious spam campaign targeting German-speaking users with obfuscated Excel malware that would likely download Dridex but that mostly stood out through its size.

Read more  

Paper: Dexofuzzy: Android malware similarity clustering method using opcode sequence

Posted by   Martijn Grooten on   Nov 5, 2019

We publish a paper by researchers from ESTsecurity in South Korea, who describe a fuzzy hashing algorithm for clustering Android malware datasets.

Read more  

Emotet continues to bypass many email security products

Posted by   Martijn Grooten on   Nov 4, 2019

Having returned from a summer hiatus, Emotet is back targeting inboxes and, as seen in the VBSpam test lab, doing a better job than most other malicious campaigns at bypassing email security products.

Read more  
Previous1...7891011...215Next

Search blog

SEC brings case against pump-and-dump spammers

Scam spotted after spammed mail sent to SEC lawyer.
Scam spotted after spammed mail sent to SEC lawyer. Two men from Texas have been charged with a range of spam and fraud offences after a 20-month campaign using botnets to spam… https://www.virusbulletin.com/blog/2007/07/sec-brings-case-against-pump-and-dump-spammers/

Kaspersky sues Rising

Feuding AV firms to fight it out in court.
Feuding AV firms to fight it out in court.Kaspersky's Chinese subsidiary has brought a court case against local rival Rising, after an escalating war of words between the two… https://www.virusbulletin.com/blog/2007/07/kaspersky-sues-rising/

US porn spammers convicted

Two found guilty of CAN-SPAM breaches.
Two found guilty of CAN-SPAM breaches. A federal jury in Phoenix, Arizona, has found two men guilty of two charges of violating the US CAN-SPAM regulations, as well as other… https://www.virusbulletin.com/blog/2007/06/us-porn-spammers-convicted/

Spanish mobile malware suspect arrested

28-year-old charged with Cabir/Commwarrior crimes.
28-year-old charged with Cabir/Commwarrior crimes. An unnamed man has been arrested in Valencia, Spain, on suspicion of creating and spreading 20 variants of the Cabir and… https://www.virusbulletin.com/blog/2007/06/spanish-mobile-malware-suspect-arrested/

Phisher gets six years

Californian receives 70-month prison sentence, avoids 101 years behind bars.
Californian receives 70-month prison sentence, avoids 101 years behind bars. A Californian man, found guilty in January this year of operating a phishing scheme aimed at scamming… https://www.virusbulletin.com/blog/2007/06/phisher-gets-six-years/

FBI serves up Operation Bot Roast

Investigations identify more than 1 million victim IP addresses.
Investigations identify more than 1 million victim IP addresses. The FBI has announced the results of an ongoing initiative, dubbed 'Operation Bot Roast', which is aimed at… https://www.virusbulletin.com/blog/2007/06/fbi-serves-operation-bot-roast/

Spammer enters guilty plea

Admits to having spammed 1.2 million AOL customers.
Admits to having spammed 1.2 million AOL customers. A Brooklyn man has pleaded guilty to having sent spam messages to over 1.2 million AOL customers in August 2005. According to… https://www.virusbulletin.com/blog/2007/06/spammer-enters-guilty-plea/

Amero case sent for retrial

Spyware popup teacher told earlier trial was flawed.
Spyware popup teacher told earlier trial was flawed. Connecticut temporary teaching assistant Julie Amero, convicted of exposing minors to danger when a classroom computer she had… https://www.virusbulletin.com/blog/2007/06/amero-case-sent-retrial/

Anti-spam laws take hold in Hong Kong

Tough new controls aim at stamping out spam.
Tough new controls aim at stamping out spam. Hong Kong has become the latest place to see the introduction of anti-spam laws, with the first phase of a two-stage process coming… https://www.virusbulletin.com/blog/2007/06/anti-spam-laws-take-hold-hong-kong/

Another 'Spam King' arrested

Spammer brought to book after 4-year campaign.
Spammer brought to book after 4-year campaign. A Seattle man was indicted yesterday on numerous charges of fraud and deception in relation to a campaign of spamming dating back to… https://www.virusbulletin.com/blog/2007/06/another-spam-king-arrested/

Symantec sued for false positive

Chinese FP issue leads to court case.
Chinese FP issue leads to court case. A Chinese lawyer has begun court proceedings against security firm Symantec, claiming damages as a result of the widely-publicised false… https://www.virusbulletin.com/blog/2007/06/symantec-sued-false-positive/

Zango sues PC Tools for $35 million

'Reformed' adware shippers upset by detection and removal.
'Reformed' adware shippers upset by detection and removal. Adware and sometime spyware maker Zango has brought a suit against anti-spyware firm PC Tools complaining that the… https://www.virusbulletin.com/blog/2007/05/zango-sues-pc-tools-35-million/

Symantec files 8 piracy suits

Symantec pursues distributors of counterfeit software.
Symantec pursues distributors of counterfeit software.Symantec has revealed that it has filed civil lawsuits against eight US and Canadian companies accused of selling counterfeit… https://www.virusbulletin.com/blog/2007/05/symantec-files-8-piracy-suits/

Law to stop spam reaching kids dubbed a failure

Utah registry to protect children's email leaks cash and addresses.
Utah registry to protect children's email leaks cash and addresses. A law enacted in the state of Utah, as well as some other states, with the aim of preventing spammers from… https://www.virusbulletin.com/blog/2007/05/law-stop-spam-reaching-kids-dubbed-failure/

I-SPY chases SPY-ACT through approval process

Second piece of US anti-spyware legislation given go-ahead.
Second piece of US anti-spyware legislation given go-ahead. With the 'Securely Protect Yourself Against Cyber Trespass Act' (aka SPY-ACT act) approved by a House of Representatives… https://www.virusbulletin.com/blog/2007/05/i-spy-chases-spy-act-through-approval-process/

Massive lawsuit brought against spam harvesters

Harvesting detection project aims to prosecute address abusers.
Harvesting detection project aims to prosecute address abusers. A community project dedicated to gathering information on the collection of email addresses for spamming purposes… https://www.virusbulletin.com/blog/2007/05/massive-lawsuit-brought-against-spam-harvesters/

« Previous 123 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.