VB Blog

Major email service provider suffers data breach

Posted by   Virus Bulletin on   Apr 5, 2011

Financial institutions among affected customers.

Read more  

April issue of VB published

Posted by   Virus Bulletin on   Apr 1, 2011

The April issue of Virus Bulletin is now available for subscribers to download.

Read more  

Keylogger on Samsung laptops proves to be false alarm

Posted by   Virus Bulletin on   Mar 31, 2011

AV product wrongly flags malware based on existence of directory.

Read more  

South Korea proposes to make security software mandatory

Posted by   Virus Bulletin on   Mar 30, 2011

Law enables government to search PCs of those who do not comply.

Read more  

Rogue SSL certificates issued for popular websites

Posted by   Virus Bulletin on   Mar 24, 2011

Certificates revoked, but browsers still need to be updated.

Read more  

Cutwail botnet sent 1.7 trillion spam messages

Posted by   Virus Bulletin on   Mar 18, 2011

Operators made several million through botnet.

Read more  

Spam levels take a nose dive as Rustock apparently taken down - update

Posted by   Virus Bulletin on   Mar 17, 2011

Eerie silence from Rustock botnet. Microsoft reported to have co-ordinated take down.

Read more  

Increase in use of mobile anti-malware protection

Posted by   Virus Bulletin on   Mar 16, 2011

Poll shows smartphone users more likely to use anti-malware protection on their phones than three years ago.

Read more  

Taking Brain home

Posted by   Virus Bulletin on   Mar 14, 2011

Short film features Mikko Hyppönen returning first PC virus to its birthplace.

Read more  

Tsunami response quick among cybercriminals

Posted by   Virus Bulletin on   Mar 11, 2011

Miscreants releasing scams, phishing, scareware... within a matter of hours.

Read more  
Previous1...96979899100...215Next

Search blog

Ebury and Mayhem server malware families still active

Ebury and Mayhem, two families of Linux server malware, about which VB published papers back in 2014, are still active and have received recent updates.
Whether it is to send spam or to redirect web traffic to malicious payloads, compromised (Linux) web servers are the glue in many a malware campaign. Two such networks of… https://www.virusbulletin.com/blog/2017/10/ebury-and-mayhem-server-malware-families-still-active/

Malicious CCleaner update points to a major weakness in our infrastructure

Researchers from Cisco Talos have found that a recent version of the widely used CCleaner tool installed malware on the machine.
For the security community, 2017 might well be called the year of the update: two of the biggest security stories – the WannaCry outbreak and the Equifax breach – involved… https://www.virusbulletin.com/blog/2017/09/malicious-ccleaner-update-points-major-weakness-our-infrastructure/

VB2014 preview: two papers on Linux server malware

Researchers from ESET, Yandex and Symantec look at emerging malware trend.
Researchers from ESET, Yandex and Symantec look at emerging malware trend.In the weeks running up to VB2014 (the 24th Virus Bulletin International Conference), we are looking at… https://www.virusbulletin.com/blog/2014/09/preview-two-papers-linux-server-malware/

More than two million home routers have 'wide open backdoor'

Default password makes vulnerability easy to exploit.
Default password makes vulnerability easy to exploit. Researchers at Trend Micro have discovered an easy-to-exploit backdoor in routers from Chinese manufacturer Netcore, that… https://www.virusbulletin.com/blog/2014/08/more-two-million-home-routers-have-wide-open-backdoor/

'Son of Stuxnet' trojan found

'Duqu' used in targeted attacks to steal specific information.
'Duqu' used in targeted attacks to steal specific information. Researchers at both Symantec and McAfee have discovered a new Remote Access Trojan (RAT) with strong links to Stuxnet… https://www.virusbulletin.com/blog/2011/10/son-stuxnet-trojan-found/

Fake codec trojan disables anti-virus software

Victim tricked into believing security software still active.
Victim tricked into believing security software still active. A new trojan, discovered by researchers at ESET, spreads itself via fake codecs, then disables running anti-virus… https://www.virusbulletin.com/blog/2011/08/fake-codec-trojan-disables-anti-virus-software/

Hundreds of legitimate websites being hacked into

New mass infection leaves security researchers puzzled.
New mass infection leaves security researchers puzzled. Web security company ScanSafe has reported a new mass infection of websites, which it claims accounts for 15% of the web… https://www.virusbulletin.com/blog/2008/01/hundreds-legitimate-websites-being-hacked/

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.