VB Blog

Welcome to virusbulletin.com

Posted by   Martijn Grooten on   Feb 10, 2016

Almost 20 years after Virus Bulletin revealed its first site on the "world wide web", we've redesigned our whole website. And we have a new domain as well.

Read more  

VB2015 video: TurlaSat: The Fault in our Stars

Posted by   Virus Bulletin on   Feb 9, 2016

In a presentation at VB2015 in Prague, Kaspersky Lab researcher Kurt Baumgartner talked about Turla's extraplanetary activities: the malware used (and abused) satellite Internet connections for command and control communication.

Read more  

Security vendors should embrace those hunting bugs in their products

Posted by   Virus Bulletin on   Feb 1, 2016

When interviewed by the Risky Business podcast last week, VB Editor Martijn Grooten talked about the security of security products and said that many vendors are embracing the work done by Tavis Ormandy and others - as they should.

Read more  

More VB Conference papers and videos published

Posted by   Virus Bulletin on   Jan 29, 2016

More VB2014 Conference papers and videos published - 11 papers and 9 videos added to our website.

Read more  

Throwback Thursday: Peter-II - Three Questions of The Sphinx

Posted by   Virus Bulletin on   Jan 28, 2016

This Throwback Thursday, VB heads back to 1993, when an ordinary memory-resident master boot sector virus spiced things up with a bit of pop trivia.

Read more  

VB2015 paper: Effectively testing APT defences

Posted by   Virus Bulletin on   Jan 27, 2016

Simon Edwards discusses how to test the potentially untestable.

Read more  

VB2015 paper: The ethics and perils of APT research: an unexpected transition into intelligence brokerage

Posted by   Virus Bulletin on   Jan 21, 2016

Juan Andrés Guerrero-Saade discusses the perils and ethical conundrums that arise as the industry enters a new playing field.

Read more  

VB2015 paper: Digital 'Bian Lian' (face changing): the Skeleton Key malware

Posted by   Virus Bulletin on   Jan 19, 2016

Microsoft, Dell SecureWorks researchers analyse malware targeting Active Directory servers.

Read more  

Throwback Thursday: I say Virus, You say Trojan

Posted by   Virus Bulletin on   Jan 14, 2016

This Throwback Thursday, VB heads back to 1998 — a time when anti-virus vendors avoided tackling non-replicating trojans, worms, jokes and corrupted files.

Read more  

Let's Encrypt certificate used in malversiting

Posted by   Virus Bulletin on   Jan 8, 2016

We'd better get used to a world where malicious traffic is encrypted too.

Read more  
Previous1...4647484950...215Next

Search blog

Vulnerabilities closed in OpenOffice, StarOffice

Flaws patched in TIFF parsing code.
Flaws patched in TIFF parsing code. Security researchers at iDefense revealed last week that OpenOfficeversion 2.0.4 and earlier versions are vulnerable to maliciously crafted TIFF… https://www.virusbulletin.com/blog/2007/09/vulnerabilities-closed-openoffice-staroffice/

Quiet Patch Tuesday

Four flaws fixed in minimal security update.
Four flaws fixed in minimal security update.Microsoft's monthly 'Patch Tuesday' release of security updates for Windows and other software has been fairly quiet this month - with… https://www.virusbulletin.com/blog/2007/09/quiet-patch-tuesday/

Yahoo!-owned ad firm serves up trojans

Infectious flash adverts displayed on major sites.
Infectious flash adverts displayed on major sites. Advertising supplied by ad firm Right Media, a company bought out by web giant Yahoo! earlier this year after an initial… https://www.virusbulletin.com/blog/2007/09/yahoo-owned-ad-firm-serves-trojans/

Minor flaws patched in Sophos AV

Security vulnerabilities found and fixed.
Security vulnerabilities found and fixed. Two separate flaws have been reported in Sophos's anti-virus engine, affecting most of its product range and allowing security bypass and… https://www.virusbulletin.com/blog/2007/09/minor-flaws-patched-sophos-av/

String of vulnerabilities found in ServerProtect

Several minor holes patched in Trend Micro corporate product.
Several minor holes patched in Trend Micro corporate product. A series of security issues have been reported in Trend Micro's ServerProtect server-level product, which could allow… https://www.virusbulletin.com/blog/2007/08/string-vulnerabilities-found-serverprotect/

14 flaws fixed in bumper Patch Tuesday

Critical remote execution and hijack holes closed.
Critical remote execution and hijack holes closed.Microsoft's monthly 'Patch Tuesday' security bulletin includes nine separate bulletins this month, covering a total of 14… https://www.virusbulletin.com/blog/2007/08/14-flaws-fixed-bumper-patch-tuesday/

Storm e-card malware keeps on coming

No end to flood of fake friendly greetings.
No end to flood of fake friendly greetings. A further wave of e-cards carrying links to 'Storm' malware (various labelled Nuwar, Peacomm, Dorf, Zhelatin) has been hitting inboxes… https://www.virusbulletin.com/blog/2007/08/storm-e-card-malware-keeps-coming/

Webcam zero-day in Yahoo! Messenger

Video chat invites pose vulnerability danger.
Video chat invites pose vulnerability danger. A zero-day vulnerability has been reported in the webcam module of Yahoo! Messenger, allowing attackers remote access to systems open… https://www.virusbulletin.com/blog/2007/08/webcam-zero-day-yahoo-messenger/

Serious flaws patched in Norton 2006 products

Symantec users warned of vulnerabilities.
Symantec users warned of vulnerabilities. Users of Symantec's popular Norton AntiVirus and Norton Internet Security products are being urged to ensure they are running the latest… https://www.virusbulletin.com/blog/2007/08/serious-flaws-patched-norton-2006-products/

Series of products hit by vulnerabilities

Researcher finds flaws in ESET, Panda and Norman AV software.
Researcher finds flaws in ESET, Panda and Norman AV software. Researcher Sergio Alvarez has reported on vulnerabilities found in a string of anti-virus products this week, with… https://www.virusbulletin.com/blog/2007/07/series-products-hit-vulnerabilities/

Symantec, AVG suffer problems

Vulnerabilities and false positives strike major products.
Vulnerabilities and false positives strike major products.Symantec users have been warned of some serious issues with archive handling, across a wide range of software produced by… https://www.virusbulletin.com/blog/2007/07/symantec-avg-suffer-problems/

Controversy over IE-to-Firefox exploit

MS and Mozilla in row over blame for cross-browser attack.
MS and Mozilla in row over blame for cross-browser attack. An exploit which involves browsing to a malicious website using Internet Explorer, but then launches an attack via a… https://www.virusbulletin.com/blog/2007/07/controversy-over-ie-firefox-exploit/

7 flaws fixed in July Patch Tuesday release

Critical patches issued for Excel, Active Directory and .NET.
Critical patches issued for Excel, Active Directory and .NET.Microsoft has released a total of seven patches in its monthly 'Patch Tuesday' security update, with three of the… https://www.virusbulletin.com/blog/2007/07/7-flaws-fixed-july-patch-tuesday-release/

Fake updates and phony postcards carry malware

Microsoft patch and greetings card spams bring more trojans.
Microsoft patch and greetings card spams bring more trojans. Several spam runs posing as vulnerability alerts from Microsoft have been spotted in the last week, with links to… https://www.virusbulletin.com/blog/2007/07/fake-updates-and-phony-postcards-carry-malware/

Bugs found in Apple's new Windows browser within hours of release

Safari not so good-y.
Safari not so good-y. A number of security researchers say they found bugs in Apple's brand new web browser Safari for Windows just hours after its public beta release on 11 June.… https://www.virusbulletin.com/blog/2007/06/bugs-found-apple-s-new-windows-browser-within-hours-release/

4 critical flaws patched this Patch Tuesday

Microsoft's June Security Bulletin covers range of vulnerabilities.
Microsoft's June Security Bulletin covers range of vulnerabilities.Microsoft's latest 'Patch Tuesday' security bulletin, released yesterday, includes fixes for six vulnerabilities,… https://www.virusbulletin.com/blog/2007/06/4-critical-flaws-patched-patch-tuesday/

Serious holes in Yahoo! Messenger

Critical vulnerabilities fully disclosed.
Critical vulnerabilities fully disclosed. Two security flaws in the popular Yahoo! Messenger communications software have been reported, with full details available online before a… https://www.virusbulletin.com/blog/2007/06/serious-holes-yahoo-messenger/

CA struck by vulnerability

CAB handling issue affects swathe of products.
CAB handling issue affects swathe of products. Two flaws related to the handling of CAB archive files by the CA anti-virus engine have been reported, rendering products across CA's… https://www.virusbulletin.com/blog/2007/06/ca-struck-vulnerability/

Vulnerabilities strike more AV firms, and Mac too

F-Secure and Authentium patch holes, while Samba flaws worry Apple users.
F-Secure and Authentium patch holes, while Samba flaws worry Apple users. Users of Mac OS X, used to a cosy sense of security, have been warned of possible penetration vectors… https://www.virusbulletin.com/blog/2007/06/vulnerabilities-strike-more-av-firms-and-mac-too/

Overflows hit NOD32

Vulnerabilities disclosed after patching.
Vulnerabilities disclosed after patching. Two stack-overflow vulnerabilities have been disclosed in Eset's flagship NOD32 AntiVirus product, which could have been exploited to… https://www.virusbulletin.com/blog/2007/05/overflows-hit-nod32/

« Previous 1234567 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.