VB Blog

VB2017 paper: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server

Posted by Martijn Grooten on Nov 29, 2017

At VB2017 in Madrid, macOS malware researcher Patrick Wardle presented the details of a specific piece of Mac malware, FruitFly, which he analysed through a custom C&C server - a technique that will also be of interest for researchers of malware on other platforms. Today we publish both Patrick's paper and the recording of his presentation.

Posted by Martijn Grooten on Nov 28, 2017

Researchers from Google have taken down 'Tizi', an Android malware family, that used nine already patched vulnerabilities to obtain root on infected devices.

Posted by Martijn Grooten on Nov 27, 2017

Next week, Virus Bulletin researchers will be attending the AMTSO meeting and AVAR conference in Beijing, China, as well as the 5th edition of the Botconf conference in Montpellier, France.

Posted by Martijn Grooten on Nov 24, 2017

Today, we publish the video of the VB2017 presentation by ESET researcher Filip Kafka, who looked at recent changes in the FinFisher government malware, including its infection vectors.

Posted by Martijn Grooten on Nov 23, 2017

We look back at the VB2016 presentation by Adrian Sanabria on the state of endpoint security, both now and in the future.

Posted by Martijn Grooten on Nov 22, 2017

At VB2017 in Madrid, Cisco Umbrella (OpenDNS) researchers Dhia Mahjoub and David Rodriguez presented a new approach to detecting infected machines using graphs to detect botnet traffic at scale. Today we publish both Dhia and David's paper and the recording of their presentation.

Posted by Martijn Grooten on Nov 21, 2017

Firefox developer Mozilla has announced that, as of version 59 of the browser, many kinds of data URIs, which provide a way to create "domainless web content", will not be rendered in the browser, thus making this trick - used in various phishing campaigns - a lot less attractive.

Posted by Martijn Grooten on Nov 16, 2017

Virus Bulletin ran a standalone test on FireEye's Endpoint Security solution.

Posted by Martijn Grooten on Nov 13, 2017

Jelena Milosevic, a nurse with a passion for IT security, is uniquely placed to witness poor security practices in the health care sector, and to fully understand the consequences. Today, we publish the recording of a presentation given by Jelena at VB2017 in Madrid, in which she shared her inside view of security in hospitals.

Posted by Martijn Grooten on Nov 9, 2017

Both bad news (all devices were pwnd) and good news (pwning is increasingly difficult) came from the most recent mobile Pwn2Own competition. But the practical security risks that come with using mobile phones have little to do with vulnerabilities.

Previous1...2728293031...215Next

Search blog

Hefty Patch Tuesday bulletin rounds off bumper year

No sign of an end to vulnerability glut.
No sign of an end to vulnerability glut.Microsoft released its monthly Patch Tuesday security bulletin yesterday, with details of a hefty 17 alerts covering 40 separate… https://www.virusbulletin.com/blog/2010/12/hefty-patch-tuesday-bulletin-rounds-bumper-year/

Chinese whispers of malware writing and bribery in the industry

As China corruption scandals rumble on, more rumours of malware writers in AV firms surface.
As China corruption scandals rumble on, more rumours of malware writers in AV firms surface. Several recent stories in the media have revolved around China and malware writers,… https://www.virusbulletin.com/blog/2010/12/chinese-whispers-malware-writing-and-bribery-industry/

774,000 Avast! pirates on 14-user licence

Wildly popular free solution not good enough for some.
Wildly popular free solution not good enough for some. Leading provider of free anti-malware products Avast Software has spotted that a single 14-user licence key, issued last… https://www.virusbulletin.com/blog/2010/12/774-000-avast-pirates-14-user-licence/

Russian ATM hackers arrested

Gang used customized malware bought on hacker forum.
Gang used customized malware bought on hacker forum. Police in the Siberian city of Yakutsk have arrested a gang of hackers who had installed malware on ATMs throughout the city.… https://www.virusbulletin.com/blog/2010/12/russian-atm-hackers-arrested/

December issue of VB published

The December issue of Virus Bulletin is now available for subscribers to download.
The December issue of Virus Bulletin is now available for subscribers to download. The December 2010 issue of Virus Bulletin is now available for subscribers to browse online or… https://www.virusbulletin.com/blog/2010/12/december-issue-vb-published/

December

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2010/12/

18 months for member of m00p gang

Hacker receives prison sentence.
Hacker receives prison sentence. A Scottish man who pleaded guilty last month to 'causing unauthorized modification to the content of computers' as part of his involvement in the… https://www.virusbulletin.com/blog/2010/11/18-months-member-m00p-gang/

Survey reveals apathy surrounding anti-malware protection

Inconvenient subscription models preventing UK consumers from protecting their PCs adequately.
Inconvenient subscription models preventing UK consumers from protecting their PCs adequately. A survey conducted in the UK by security firm GFI Software has revealed that 40% of… https://www.virusbulletin.com/blog/2010/11/survey-reveals-apathy-surrounding-anti-malware-protection/

Royal engagement search results poisoned

Hackers take the shine off Royal couple's news.
Hackers take the shine off Royal couple's news. It will come as little surprise to those in the IT security industry to hear that within minutes of yesterday's announcement of the… https://www.virusbulletin.com/blog/2010/11/royal-engagement-search-results-poisoned/

Site launched for anonymous sharing of information about security breaches

Verizon aims to foster cooperation and provide more readily available information for risk management.
Verizon aims to foster cooperation and provide more readily available information for risk management. It is well known in the security industry that one of the biggest barriers to… https://www.virusbulletin.com/blog/2010/11/site-launched-anonymous-sharing-information-about-security-breaches/

More than 1 million Chinese phones infected with malware

Mobile botnet sending out SMS spam.
Mobile botnet sending out SMS spam. Over one million mobile phones in China have been infected with malware and are sending out SMS spam, the Shanghai Daily reports. Masquerading… https://www.virusbulletin.com/blog/2010/11/more-1-million-chinese-phones-infected-malware/

Security fixes from Apple and Microsoft

100 security fixes in latest OS X update; three MS security updates in this month's patch release.
100 security fixes in latest OS X update; three MS security updates in this month's patch release. The latest release of Mac operating system OS X (Mac OS X v10.6.5) contains over… https://www.virusbulletin.com/blog/2010/11/security-fixes-apple-and-microsoft/

AVG to acquire DroidSecurity

Security firm set to expand solutions to mobile devices.
Security firm set to expand solutions to mobile devices. Czech security firm AVG has announced the acquisition of Tel Aviv-based DroidSecurity, a specialist in cloud-based… https://www.virusbulletin.com/blog/2010/11/avg-acquire-droidsecurity/

Malicious applications target Orkut

Visitors to infected social network profiles redirected to phishing sites.
Visitors to infected social network profiles redirected to phishing sites. Users of the social networking site Orkut have found themselves targeted by malicious applications that… https://www.virusbulletin.com/blog/2010/11/malicious-applications-target-orkut/

TrustPort lends support to UNICEF

Season of giving comes early for Czech security firm.
Season of giving comes early for Czech security firm. Czech security firm TrustPort has made a financial donation to international children's charity UNICEF which will enable the… https://www.virusbulletin.com/blog/2010/11/trustport-lends-support-unicef/

Eight Zeus-related money mules arrested

Arrests in US and Moldova show that cybercriminals aren't immune to the law.
Arrests in US and Moldova show that cybercriminals aren't immune to the law. Police in the US state of Wisconsin have arrested two Moldovan citizens who they believe have worked as… https://www.virusbulletin.com/blog/2010/11/eight-zeus-related-money-mules-arrested/

Almost three quarters use same password for different sites

User continues to be the weakest link.
User continues to be the weakest link. 73% of computer users use the same password across multiple different accounts according to survey results released by security firm… https://www.virusbulletin.com/blog/2010/11/almost-three-quarters-use-same-password-different-sites/

AV-Test.org unveils latest results

Trend Micro achieves pass; Microsoft and McAfee fail to reach certification standards.
Trend Micro achieves pass; Microsoft and McAfee fail to reach certification standards. Independent testing body AV-Test.org has released its latest set of quarterly test results,… https://www.virusbulletin.com/blog/2010/11/av-test-org-unveils-latest-results/

Facebook targeted by Boonana

Windows, Mac and Linux users affected by new social networking threat.
Windows, Mac and Linux users affected by new social networking threat. Another malware family has been discovered targeting popular social networking site Facebook. Boonana, which… https://www.virusbulletin.com/blog/2010/11/facebook-targeted-boonana/

Success in anti-botnet operation

VB Seminar speaker describes how m00p gang member exploited computer users.
VB Seminar speaker describes how m00p gang member exploited computer users. A Scottish man pleaded guilty last month to 'causing unauthorized modification to the content of… https://www.virusbulletin.com/blog/2010/11/success-anti-botnet-operation/

« Previous 1...5657585960...121 Next »