VB Blog

Microsoft research revives 'friendly worm' ideas

Posted by   Virus Bulletin on   Feb 15, 2008

Malware techniques proposed as update-spreading method.

Read more  

Phishers phishing phishers' phishes

Posted by   Virus Bulletin on   Feb 15, 2008

Scam software secretly sending stolen data to creators.

Read more  

Software and OS developers should take responsibility for security

Posted by   Virus Bulletin on   Feb 15, 2008

While 51% of users say computer security should be the responsibility of the user, nearly a third of users feel it is up to software and OS developers.

Read more  

Bumper Patch Tuesday short of one patch

Posted by   Virus Bulletin on   Feb 13, 2008

Excel remains vulnerable as expected fix is dropped.

Read more  

Trend vs. ClamAV patent row hots up

Posted by   Virus Bulletin on   Feb 13, 2008

Free software advocates call for boycott of Trend.

Read more  

M&S joins high-street AV retail crowd

Posted by   Virus Bulletin on   Feb 13, 2008

Upmarket store to match rivals in security software selling.

Read more  

Over 1 per cent of search results include malicious sites

Posted by   Virus Bulletin on   Feb 12, 2008

Google research paper confirms significant increase in number of malware-serving websites.

Read more  

Storm Valentines run under way

Posted by   Virus Bulletin on   Feb 12, 2008

Seasonal spam and malware barrage gets going.

Read more  

More PDF exploits seen in wild

Posted by   Virus Bulletin on   Feb 11, 2008

Adobe Reader and Acrobat flaws open way for further document attacks.

Read more  

Live Mail CAPTCHA system bypassed

Posted by   Virus Bulletin on   Feb 11, 2008

Spammers use botnet to register accounts on popular free webmail service.

Read more  

Search blog

Ebury and Mayhem server malware families still active

Ebury and Mayhem, two families of Linux server malware, about which VB published papers back in 2014, are still active and have received recent updates.
Whether it is to send spam or to redirect web traffic to malicious payloads, compromised (Linux) web servers are the glue in many a malware campaign. Two such networks of… https://www.virusbulletin.com/blog/2017/10/ebury-and-mayhem-server-malware-families-still-active/

Malicious CCleaner update points to a major weakness in our infrastructure

Researchers from Cisco Talos have found that a recent version of the widely used CCleaner tool installed malware on the machine.
For the security community, 2017 might well be called the year of the update: two of the biggest security stories – the WannaCry outbreak and the Equifax breach – involved… https://www.virusbulletin.com/blog/2017/09/malicious-ccleaner-update-points-major-weakness-our-infrastructure/

VB2014 preview: two papers on Linux server malware

Researchers from ESET, Yandex and Symantec look at emerging malware trend.
Researchers from ESET, Yandex and Symantec look at emerging malware trend.In the weeks running up to VB2014 (the 24th Virus Bulletin International Conference), we are looking at… https://www.virusbulletin.com/blog/2014/09/preview-two-papers-linux-server-malware/

More than two million home routers have 'wide open backdoor'

Default password makes vulnerability easy to exploit.
Default password makes vulnerability easy to exploit. Researchers at Trend Micro have discovered an easy-to-exploit backdoor in routers from Chinese manufacturer Netcore, that… https://www.virusbulletin.com/blog/2014/08/more-two-million-home-routers-have-wide-open-backdoor/

'Son of Stuxnet' trojan found

'Duqu' used in targeted attacks to steal specific information.
'Duqu' used in targeted attacks to steal specific information. Researchers at both Symantec and McAfee have discovered a new Remote Access Trojan (RAT) with strong links to Stuxnet… https://www.virusbulletin.com/blog/2011/10/son-stuxnet-trojan-found/

Fake codec trojan disables anti-virus software

Victim tricked into believing security software still active.
Victim tricked into believing security software still active. A new trojan, discovered by researchers at ESET, spreads itself via fake codecs, then disables running anti-virus… https://www.virusbulletin.com/blog/2011/08/fake-codec-trojan-disables-anti-virus-software/

Hundreds of legitimate websites being hacked into

New mass infection leaves security researchers puzzled.
New mass infection leaves security researchers puzzled. Web security company ScanSafe has reported a new mass infection of websites, which it claims accounts for 15% of the web… https://www.virusbulletin.com/blog/2008/01/hundreds-legitimate-websites-being-hacked/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.