VB Blog

WireLurker malware infects iOS devices through OS X

Posted by   Virus Bulletin on   Nov 6, 2014

Non-jailbroken devices infected via enterprise provisioning program.

Read more  

VB2014 paper: DMARC - how to use it to improve your email reputation

Posted by   Virus Bulletin on   Nov 6, 2014

Terry Zink presents case study in which he describes setting a DMARC policy for Microsoft.

Read more  

VB2014 Paper: Well, that escalated quickly. From penny-stealing malware to multi-million-dollar heists, a quick overview of the Bitcoin bonanza in the digital era

Posted by   Virus Bulletin on   Nov 4, 2014

Santiago Pontiroli takes us on a rollercoaster ride through cryptocurrency land.

Read more  

The VB2014 presentation you never saw. Early launch Android malware: your phone is 0wned

Posted by   Virus Bulletin on   Oct 31, 2014

Malicious apps may have more privileges than security software.

Read more  

CVE-2012-0158 continues to be used in targeted attacks

Posted by   Virus Bulletin on   Oct 31, 2014

30-month old vulnerability still a popular way to infect systems.

Read more  

Paper: Invading the core: iWorm's infection vector and persistence mechanism

Posted by   Virus Bulletin on   Oct 30, 2014

Malware spreads through infected torrent, then maintains persistence on the system.

Read more  

New IcoScript variant uses Gmail drafts for C&C communication

Posted by   Virus Bulletin on   Oct 29, 2014

Switch likely to make modular malware even stealthier.

Read more  

VB2014 paper: Hiding the network behind the network. Botnet proxy business model

Posted by   Virus Bulletin on   Oct 28, 2014

Cristina Vatamanu and her colleagues describe how botherders keep their C&C servers hidden.

Read more  

VB2014 paper: Methods of malware persistence on Mac OS X

Posted by   Virus Bulletin on   Oct 27, 2014

'KnockKnock' tool made available to the public.

Read more  

Tor exit node found to turn downloaded binaries into malware

Posted by   Virus Bulletin on   Oct 24, 2014

Tor provides anonymity, not security, hence using HTTPS is essential.

Read more  
Previous1...6364656667...215Next

Search blog

New paper: A review of the evolution of Andromeda over the years

The Andromeda botnet (aka Gamarue or Wauchos) has plagued Internet users for more than half a decade but, following a takedown effort and the arrest of the suspected botnet owner in December 2017, it is likely we have seen the end of it. In a new paper by…
In December last year, a joint operation involving law enforcement agencies and many security firms led to the dismantling of the Andromeda botnet, also known as Gamarue or… https://www.virusbulletin.com/blog/2018/02/new-paper-review-evolution-andromeda-over-years/

VB2014 paper: Duping the machine - malware strategies, post sandbox detection

James Wyke looks at malware that takes extra steps to frustrate researchers.
James Wyke looks at malware that takes extra steps to frustrate researchers.Since the close of the VB2014 conference in Seattle in October, we have been sharing VB2014 conference… https://www.virusbulletin.com/blog/2015/01/paper-duping-machine-malware-strategies-post-sandbox-detection/

VB2014 preview: Duping the machine - malware strategies, post sandbox detection

James Wyke looks at four difference decoy methods.
James Wyke looks at four difference decoy methods.In the weeks running up to VB2014 (the 24th Virus Bulletin International Conference), we will look at some of the research that… https://www.virusbulletin.com/blog/2014/08/preview-duping-machine-malware-strategies-post-sandbox-detection/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.