VB Blog

VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors

Posted by Martijn Grooten on Jan 7, 2019

Today, we publish the VB2018 paper by Chronicle researcher Juan Andres Guerrero-Saade, who argues we should change the way we talk about APT actors.

Posted by Martijn Grooten on Dec 19, 2018

VB Editor Martijn Grooten reviews Charles Arthur's Cyber Wars, which looks at seven prominent hacks and attacks, and the lessons we can learn from them.

Posted by Martijn Grooten on Dec 14, 2018

At VB2018 Sophos researcher Gábor Szappanos provided a detailed overview of Office exploit builders, and looked in particular at the widely exploited CVE-2017-0199. Today we publish his paper and release the video of his presentation.

Posted by Martijn Grooten on Dec 12, 2018

Today, we release the video of the VB2018 presentation by Check Point researcher Aseel Kayal, who connected the various dots relating to campaigns by the APT-C-23 threat group.

Posted by Martijn Grooten on Dec 11, 2018

VB calls on organisations and individuals involved in threat intelligence from around the world to participate in next year's Virus Bulletin conference.

Posted by Martijn Grooten on Dec 7, 2018

Today, we publish the VB2018 paper by Qihoo 360 researchers Ya Liu and Hui Wang, on extracting data from variants of the Mirai botnet to classify and track variants.

Posted by Martijn Grooten on Dec 6, 2018

2018 has seen an increase in the variety of botnets living on the Internet of Things - such as Hide'N'Seek, which is notable for its use of peer-to-peer for command-and-control communication. Today, we publish the VB2018 paper by Bitdefender researchers Adrian Șendroiu and Vladimir Diaconescu, who studied the Hide'N'Seek IoT botnet. We also release the recording of their presentation.

Posted by Martijn Grooten on Dec 4, 2018

In a new paper, Avast researchers Jan Sirmer and Adolf Streda look at how a spam campaign sent via the Necurs botnet was delivering the Flawed Ammyy RAT. As well as publishing the paper, we have also released the video of the reseachers' VB2018 presentation on the same topic.

Posted by Martijn Grooten on Nov 29, 2018

Today we have published the video of the VB2018 presentation by Andrew Brandt (Sophos) on the SamSam ransomware, which became hot news following the indictment of its two suspected authors yesterday.

Posted by Martijn Grooten on Nov 28, 2018

Today, we publish the video of the VB2018 presentation by CitizenLab researchers Masashi Nishihata and John Scott Railton, on threats faced by civil society.

Previous1...1415161718...215Next

Search blog

AV-Test.org issues latest round of testing results

Symantec and Microsoft outdo Trend and McAfee in live tests.
Symantec and Microsoft outdo Trend and McAfee in live tests. Independent testing organisation AV-Test.org has released its latest round of test results in a simplified format,… https://www.virusbulletin.com/blog/2010/08/av-test-org-issues-latest-round-testing-results/

Extra-large crop of updates for Patch Tuesday

Fourteen security alerts from Microsoft join two from Adobe.
Fourteen security alerts from Microsoft join two from Adobe.Microsoft's monthly Patch Tuesday security bulletins came out this week, featuring a chunky 14 separate alerts with many… https://www.virusbulletin.com/blog/2010/08/extra-large-crop-updates-patch-tuesday/

Patches come thick and fast in major update spree

Monthly and out-of-band issues flood admins' to-do lists.
Monthly and out-of-band issues flood admins' to-do lists. The release of this month's Patch Tuesday security bulletins from Microsoft, with a fairly average 10 alerts covering 34… https://www.virusbulletin.com/blog/2010/06/patches-come-thick-and-fast-major-update-spree/

Patch Tuesday release includes 13 bulletins

26 vulnerabilities featured in sizeable update set.
26 vulnerabilities featured in sizeable update set. After a relatively quiet January, administrators are faced with a hefty workload this week as Microsoft's monthly Patch Tuesday… https://www.virusbulletin.com/blog/2010/02/patch-tuesday-release-includes-13-bulletins/

IE zero-day bug fixed in Patch Tuesday updates

Serious browser bug main feature of monthly alerts, Adobe Flash issue also patched.
Serious browser bug main feature of monthly alerts, Adobe Flash issue also patched.Microsoft has released the December Patch Tuesday security bulletin, with a total of six alerts.… https://www.virusbulletin.com/blog/2009/12/ie-zero-day-bug-fixed-patch-tuesday-updates/

VB100 update

Post-test analysis corrects results for MS Forefront, CA.
Post-test analysis corrects results for MS Forefront, CA. In the wake of the mammoth VB100 comparative released earlier this week, the lab team have been conducting thorough… https://www.virusbulletin.com/blog/2009/12/update/

Anti-spam products do well in VB testing

VB announces anti-spam certification results.
VB announces anti-spam certification results.Virus Bulletin has announced that 12 products earned VBSpam awards in its latest round of comparative anti-spam testing. A total of 14… https://www.virusbulletin.com/blog/2009/11/anti-spam-products-do-well-vb-testing/

Bumper crop of October patch releases

Busy weeks for admins as Patch Tuesday joined by Adobe fixes, and Mozilla announces plug-in checking plans.
Busy weeks for admins as Patch Tuesday joined by Adobe fixes, and Mozilla announces plug-in checking plans. This week has seen Microsoft's monthly Patch Tuesday release of security… https://www.virusbulletin.com/blog/2009/10/bumper-crop-october-patch-releases/

Microsoft steps into free AV market

Security Essentials release creates expected storm of words.
Security Essentials release creates expected storm of words.Microsoft's release of its free Security Essentials product this week sparked the expected barrage of views and opinions… https://www.virusbulletin.com/blog/2009/10/microsoft-steps-free-av-market/

Patch Tuesday brings little relief from browser exploits

Six fixes issued, but new IE zero day emerges along with Firefox flaw.
Six fixes issued, but new IE zero day emerges along with Firefox flaw.Microsoft has issued its monthly 'Patch Tuesday' security update, with some serious browser flaws patched, but… https://www.virusbulletin.com/blog/2009/07/patch-tuesday-brings-little-relief-browser-exploits/

Another IE zero day exploited

Second DirectShow vulnerability in six weeks labelled 'extremely critical'.
Second DirectShow vulnerability in six weeks labelled 'extremely critical'.Microsoft has issued an advisory on a serious vulnerability in an ActiveX control in its Internet… https://www.virusbulletin.com/blog/2009/07/another-ie-zero-day-exploited/

Eight fixes for April Patch Tuesday release

Five critical updates in latest monthly patch release.
Five critical updates in latest monthly patch release. The April Patch Tuesday release from Microsoft, revealed this week, contained five updates rated 'critical', as well as two… https://www.virusbulletin.com/blog/2009/04/eight-fixes-april-patch-tuesday-release/

AV-Comparatives releases latest detection figures

Large collection test shows major improvement from AV giants.
Large collection test shows major improvement from AV giants. Independent testing organisation AV-Comparatives has released its latest bi-annual detection test figures, with 17… https://www.virusbulletin.com/blog/2009/03/av-comparatives-releases-latest-detection-figures/

March Patch Tuesday followed by PDF viewer patches

Major kernel issue and PDF problems fixed, spreadsheet software remains vulnerable.
Major kernel issue and PDF problems fixed, spreadsheet software remains vulnerable.Microsoft released the March security bulletin this week, with the monthly Patch Tuesday updates… https://www.virusbulletin.com/blog/2009/03/march-patch-tuesday-followed-pdf-viewer-patches/

MS forms anti-Conficker alliance

Industry group to combine efforts, reward offered.
Industry group to combine efforts, reward offered.Microsoft has announced a collaborative effort to combat the Conficker (aka Downadup) botnet, the widespread infection making… https://www.virusbulletin.com/blog/2009/02/ms-forms-anti-conficker-alliance/

IE fixed as usual in Patch Tuesday release

Browser should be treated as special case, say some.
Browser should be treated as special case, say some. The February 'Patch Tuesday' security bulletin from Microsoft this week contained four patches, two of them marked 'Critical',… https://www.virusbulletin.com/blog/2009/02/ie-fixed-usual-patch-tuesday-release/

MS report finds phishing revenues overhyped

Huge earnings may be myth, say researchers.
Huge earnings may be myth, say researchers. A report from Microsoft analysing the potential income of phishers claims that the amounts taken from duped victims of online scams may… https://www.virusbulletin.com/blog/2009/01/ms-report-finds-phishing-revenues-overhyped/

MS to release out-of-band patch for critical IE vulnerability

Users advised to patch ASAP.
Users advised to patch ASAP.Microsoft is set to release an emergency out-of-band patch for the vulnerability in its Internet Explorer browser reported last week. Attacks via the… https://www.virusbulletin.com/blog/2008/12/ms-release-out-band-patch-critical-ie-vulnerability/

IE zero-day danger growing

Large numbers of users vulnerable to unpatched problem.
Large numbers of users vulnerable to unpatched problem. The as-yet unpatched vulnerability in Microsoft's Internet Explorer browser, reported last week and coinciding with the… https://www.virusbulletin.com/blog/2008/12/ie-zero-day-danger-growing/

FTC goes after scareware scammers

Courts crack down on pushers of rogue anti-malware.
Courts crack down on pushers of rogue anti-malware. The US Federal Trade Commission (FTC) has announced a successful move to persuade a US district court to shut down a major… https://www.virusbulletin.com/blog/2008/12/ftc-goes-after-scareware-scammers/

« Previous 1234 Next »