VB Blog

Latest Virus Bulletin report shows the difference web security products make

Posted by Martijn Grooten on Nov 27, 2018

The latest Virus Bulletin web security report sees Kaspersky, Trustwave and Fortinet all achieve VBWeb certification, but also see some products struggle with the new Fallout exploit kit.

Posted by Martijn Grooten on Nov 26, 2018

Subscribe to the re-launched Virus Bulletin eNews Newsletter to receive regular updates on the latest threat intelligence sources directly in your inbox.

Posted by Martijn Grooten on Nov 22, 2018

The Lazarus Group, which became (in)famous through the Sony Pictures breach and the WannaCry attack, is still very much active and targeting financial institutions around the world. Today we publish the VB2018 paper by AhnLab researcher Minseok (Jacky) Cha on the group's activities.

Posted by Martijn Grooten on Nov 16, 2018

Today, we have published the video of a VB2018 presentation by Kaspersky Lab researchers Kurt Baumgartner and Mike Scott, who looked at the latest activity of the Turla group.

Posted by Martijn Grooten on Nov 13, 2018

Today we publish the video of the VB2018 presentation by Google researcher Lukasz Siewierski on the Triada Android malware and Google's work with OEMs to remove it from infected devices.

Posted by Martijn Grooten on Nov 6, 2018

Today, we publish the VB2018 paper by Masarah Paquet-Clouston (GoSecure) who looked at the supply chain behind social media fraud.

Posted by Virus Bulletin on Nov 1, 2018

Today, we publish the VB2018 paper from Saher Naumaan (BAE Systems) who looks at malware variants that contain a wiper functionality. We also publish the recording of her presentation.

Posted by Martijn Grooten on Oct 31, 2018

The infamous Emotet trojan has added the capability to steal full email bodies from infected machines, opening the possibilities for more targeted spam and phishing campaigns.

Posted by Martijn Grooten on Oct 30, 2018

Cisco Talos researchers Paul Rascagnères and Warren Mercer were among the first to write about the Olympic Destroyer, the malware that targeted the 2018 PyeongChang Winter Olympic Games. Today, we publish the paper they presented at VB2018 about the malware; we also publish the video of their VB2018 presentation.

Posted by Martijn Grooten on Oct 26, 2018

Today, we publish the VB2018 paper by Malwarebytes researcher Jérôme Segura, in which he details the shift from exploit kits to drive-by mining. We also publish the video of his VB2018 presentation.

Previous1...1516171819...215Next

Search blog

Google shows off in-house browser beta

Open-source 'Chrome' promises security as well as efficiency.
Open-source 'Chrome' promises security as well as efficiency. Ever-expanding web giant Google has released an early version of its own browser, developed in house but under… https://www.virusbulletin.com/blog/2008/09/google-shows-house-browser-beta/

Net threats cost US $8.5 billion in two years

Study measures scale of scamming and other web worries.
Study measures scale of scamming and other web worries. US consumer watchdog body Consumer Reports have released their annual 'State of the Net' study, finding a noticeable decline… https://www.virusbulletin.com/blog/2008/08/net-threats-cost-us-8-5-billion-two-years/

Spam and ID theft attacked from all sides

EU body issues warning, ICANN, Japan and Yahoo! take on spammers and phishers.
EU body issues warning, ICANN, Japan and Yahoo! take on spammers and phishers. Last week a series of major institutions took action highlighting the threat of spam and phishing,… https://www.virusbulletin.com/blog/2008/06/spam-and-id-theft-attacked-all-sides/

Phishing on rise, but anti-phishers fighting back

As UK banking body reports major increase in phishes, PayPal unveils blocking strategy.
As UK banking body reports major increase in phishes, PayPal unveils blocking strategy. A report from the UK payments industry association APACS has shown a dramatic increase in… https://www.virusbulletin.com/blog/2008/04/phishing-rise-anti-phishers-fighting-back/

Users of online banking 'should have adequate protection'

New UK banking code says customers who keep their PCs secure will not be responsible for losses due to online theft.
New UK banking code says customers who keep their PCs secure will not be responsible for losses due to online theft. A new banking code launched earlier this week by the British'… https://www.virusbulletin.com/blog/2008/04/users-online-banking-should-have-adequate-protection/

Vish implanted in phishing warning

Doctored bank alert includes phony phone number.
Doctored bank alert includes phony phone number. A spammed-out email has been spotted posing as a phishing warning from US credit union Kessler Federal, with some very sensible… https://www.virusbulletin.com/blog/2008/02/vish-implanted-phishing-warning/

Meta-phishing

Phishing warning contains link to... phishing site.
Phishing warning contains link to... phishing site. The anti-malware industry can congratulate itself for there being an increasing awareness among users about phishing. Users are… https://www.virusbulletin.com/blog/2008/02/meta-phishing/

Phishers phishing phishers' phishes

Scam software secretly sending stolen data to creators.
Scam software secretly sending stolen data to creators.Phishing researchers have uncovered code buried in phishing software kits, sold by developers to less technically aware… https://www.virusbulletin.com/blog/2008/02/phishers-phishing-phishers-phishes/

Complex attack targets Better Business Bureau

Sophisticated scam uses personalised mails, real site redirects.
Sophisticated scam uses personalised mails, real site redirects. A highly sophisticated email phishing scam is using a redirection flaw in the website of the Better Business Bureau… https://www.virusbulletin.com/blog/2008/02/complex-attack-targets-better-business-bureau/

419 scammers plead guilty in US

African trio admit attempts to defraud via spam.
African trio admit attempts to defraud via spam. Three men, two from Nigeria and a third from Senegal, entered guilty pleas in a Brooklyn, New York, courtroom last week after being… https://www.virusbulletin.com/blog/2008/02/419-scammers-plead-guilty-us/

US agencies report vishing, extortion, danger of hacking

FBI name used in email attacks, CIA warns of power supply hacks.
FBI name used in email attacks, CIA warns of power supply hacks. US security and law enforcement agencies were more than usually active in the computer security world last week,… https://www.virusbulletin.com/blog/2008/01/us-agencies-report-vishing-extortion-danger-hacking/

Help for victims of e-crime

Cybercrime support website launched.
Cybercrime support website launched. A website dedicated to helping victims of online crime and other incidents has been launched in the UK. The site, www.e-victims.org, aims to… https://www.virusbulletin.com/blog/2008/01/help-victims-e-crime/

Phishing danger increases as Storm botnet is hired out

Smart new trojan and Storm diversification add to online banking risk.
Smart new trojan and Storm diversification add to online banking risk. The dangers of banking online grew significantly in past weeks, as portions of the ever-expanding Storm… https://www.virusbulletin.com/blog/2008/01/phishing-danger-increases-storm-botnet-hired-out/

$3.2 billion lost in phishing attacks in 2007

Gartner survey reveals US losses to phishing gangs.
Gartner survey reveals US losses to phishing gangs. Analyst firm Gartner has estimated that $3.2 billion was lost by 3.6 million US computer users in phishing attacks over the 12… https://www.virusbulletin.com/blog/2007/12/3-2-billion-lost-phishing-attacks-2007/

One in four consider online banking unsafe

Virus Bulletin finds that one in four users consider online banking to be unsafe, but manage their accounts online regardless, while 50% of users consider online banking to be risk free.
Virus Bulletin finds that one in four users consider online banking to be unsafe, but manage their accounts online regardless, while 50% of users consider online banking to be risk… https://www.virusbulletin.com/blog/2007/11/one-four-consider-online-banking-unsafe/

Phished Salesforce.com data used for phishing attacks

Password leak leads to major CRM customer data haul.
Password leak leads to major CRM customer data haul. A security breach at customer relationship management (CRM) firm Salesforce.com has led to a large-scale leak of confidential… https://www.virusbulletin.com/blog/2007/11/phished-salesforce-com-data-used-phishing-attacks/

Supermarket sweep

Phishers almost get away with $10m scam.
Phishers almost get away with $10m scam. Court documents have revealed that phishers nearly managed a whopping $10 million supermarket (bank account) sweep earlier this year.… https://www.virusbulletin.com/blog/2007/11/supermarket-sweep/

Phishing trojan targets Mac OSX

DNS hijack disguised as codec threatens Apple systems.
DNS hijack disguised as codec threatens Apple systems. A new trojan affecting Apple's Mac OSX operating system - a relative rarity in the malware world - has been seen in the wild.… https://www.virusbulletin.com/blog/2007/11/phishing-trojan-targets-mac-osx/

Bulletproof hosting firm claims legitimacy

Crime-laden Russian service threatens to sue detractors.
Crime-laden Russian service threatens to sue detractors. A notorious Russian firm offering 'bulletproof hosting' - website hosting services with a guarantee that sites will not be… https://www.virusbulletin.com/blog/2007/10/bulletproof-hosting-firm-claims-legitimacy/

Phil makes anti-phishing education child's play

Researchers create game to raise awareness.
Researchers create game to raise awareness. Researchers at Carnegie Mellon University have created an interactive game designed to teach players how to identify phishing URLs and… https://www.virusbulletin.com/blog/2007/10/phil-makes-anti-phishing-education-child-s-play/

« Previous 1234 Next »