VB Blog

Consumer spyware: a serious threat with a different threat model

Posted by Martijn Grooten on Apr 25, 2017

Consumer spyware is a growing issue and one that can have serious consequences: its use is increasingly common in domestic violence. But do our threat models consider the attacker with physical access to, and inside knowledge of the victim?

Posted by Martijn Grooten on Apr 24, 2017

In their VB2016 paper, Stormshield researchers Benoît Ancel and Mehdi Talbi introduced Haka, an open-source language to monitor, debug and control malicious network traffic. Both their paper and the video recording of their presentation are now available to read/view on www.virusbulletin.com.

Posted by Martijn Grooten on Apr 13, 2017

We are proud to announce a very broad and very international programme for VB2017, which will take place in Madrid, 4-6 October 2017.

Posted by Martijn Grooten on Apr 10, 2017

Virus Bulletin is excited to announce John-Graham Cumming and Brian Honan as the two keynote speakers for VB2017 in Madrid.

Posted by Martijn Grooten on Mar 31, 2017

As VB's COO John Hawes moves on to new challenges, the team wish him a fond farewell and good luck in his future endeavours.

Posted by Martijn Grooten on Mar 28, 2017

Symantec researchers Himanshu Anand and Chastine Menrige explain how a single click can lead to a compromised machine, without malware ever being stored on disk.

Posted by Martijn Grooten on Mar 22, 2017

The Necurs botnet has started sending pump-and-dump spam. Almost all of these emails are blocked by spam filters, yet the stock price still increased.

Posted by Martijn Grooten on Mar 10, 2017

Realistically speaking, if your software or system uses the SHA-1 hashing algorithm, it is unlikely that it will be exploited in the foreseeable future. But it is also extremely difficult to be certain that your system won't be the exception.

Posted by Martijn Grooten on Mar 10, 2017

The call for papers for VB2017, which takes place 4 to 6 October in Madrid, Spain, is currently open. We're always on the look out for new speakers and new content, so to help anyone who's unfamiliar with the VB conference, we've prepared a list of answers to some frequently asked questions about the event, and about how to submit a paper.

Posted by Helen Martin on Mar 9, 2017

This week marked the 25th anniversary of the trigger date of the infamous Michelangelo virus. In January 1992, VB published an analysis of the boot sector virus that captured the imagination of the press and kicked up a media storm.

Previous1...3637383940...215Next

Search blog

Spam King sued again

Serial spammer charged with more spamming.
Serial spammer charged with more spamming. Software and security firm Infinite Monkeys & Company has announced that a lawsuit has been filed against 'Spam King' Scott Richter, head… https://www.virusbulletin.com/blog/2006/09/spam-king-sued-again/

Zero-day exploit targeting IE flaw

'Extremely critical' buffer overflow used to drop spyware.
'Extremely critical' buffer overflow used to drop spyware. Researchers at anti-spyware firm Sunbelt Software have reported an new attack actively exploiting another unpatched… https://www.virusbulletin.com/blog/2006/09/zero-day-exploit-targeting-ie-flaw/

Several backdoors in PDF revealed

Researcher lists security issues with document format.
Researcher lists security issues with document format. A researcher analysing the possibility of exploiting vulnerabilities in the Adobe PDF file format has released a lengthy list… https://www.virusbulletin.com/blog/2006/09/several-backdoors-pdf-revealed/

Google embarrassed by phishing demo

Fake Gmail site served by Google itself.
Fake Gmail site served by Google itself. Web search and service behemoth Google has had its security credibility hit this weekend, after a site was set up on its servers spoofing… https://www.virusbulletin.com/blog/2006/09/google-embarrassed-phishing-demo/

FTC shuts down spammers

Four spam companies hit by CAN-SPAM rulings.
Four spam companies hit by CAN-SPAM rulings. The US Federal Trade Commission (FTC) stepped its anti-spam operations up a gear last week, shutting down four separate organisations… https://www.virusbulletin.com/blog/2006/09/ftc-shuts-down-spammers/

Chain letter email reaps addresses

Fake research a harvesting trick by spammers.
Fake research a harvesting trick by spammers. An email widely spammed out in recent days claiming to be part of a research project into email use is in fact a scam designed to… https://www.virusbulletin.com/blog/2006/09/chain-letter-email-reaps-addresses/

Spamhaus fined $11.7 million for blocking spam

US judgement meaningless, says UK anti-spam project.
US judgement meaningless, says UK anti-spam project. An Illinois court has passed a judgement demanding UK-based spam advisory organisation Spamhaus pay $11.7 million in damages to… https://www.virusbulletin.com/blog/2006/09/spamhaus-fined-11-7-million-blocking-spam/

Vulnerability reported in IE

ActiveX flaw opens another hole in MS browser.
ActiveX flaw opens another hole in MS browser. Yet another bug has been found in Microsoft's browser Internet Explorer, only days after a previous problem was patched for the third… https://www.virusbulletin.com/blog/2006/09/vulnerability-reported-ie/

Symantec hit by vulnerabilities

Two flaws in alert handling unveiled.
Two flaws in alert handling unveiled. Two separate vulnerabilites in the alert notification handling systems of Symantec products have been reported this week. Symantec Client… https://www.virusbulletin.com/blog/2006/09/symantec-hit-vulnerabilities/

ISP wins $11 million from spammers

Judgement in EarthLink lawsuit grants heavy payout.
Judgement in EarthLink lawsuit grants heavy payout. US ISP giant EarthLink, a regular champion of the CAN-SPAM Act, has won yet another case against a spammer. The judgement passed… https://www.virusbulletin.com/blog/2006/09/isp-wins-11-million-spammers/

Sony DRM/AOL combo breaks computers

Anti-spyware tool attacks rootkit, kills CD drive.
Anti-spyware tool attacks rootkit, kills CD drive. An alert has been issued by the Office of the Attorney General of Texas, warning that an anti-spyware product from AOL has a… https://www.virusbulletin.com/blog/2006/09/sony-drm-aol-combo-breaks-computers/

Patch Tuesday light on patches

MS patches previous patches, but not Word exploit.
MS patches previous patches, but not Word exploit.Microsoft's monthly 'Patch Tuesday' release of security fixes has been relatively quiet, with only three new bugs repaired, in… https://www.virusbulletin.com/blog/2006/09/patch-tuesday-light-patches/

Barclays phish spammed widely

64% of recent phishes targeting global brand.
64% of recent phishes targeting global brand. Reports from Panda Software warn of a major phishing campaign targeting users of Barclays online banking, causing a 30% rise in… https://www.virusbulletin.com/blog/2006/09/barclays-phish-spammed-widely/

Star sites host most malware

Celebrities bigger lure than sex, says McAfee.
Celebrities bigger lure than sex, says McAfee. A report on adware and spyware from McAfee has stated that celebrity sites, rather than those pushing pornography or other widely… https://www.virusbulletin.com/blog/2006/09/star-sites-host-most-malware/

Zotob authors jailed

One year, two years for worm writing duo.
One year, two years for worm writing duo. Courts in Morocco have convicted two men accused of having a hand in the creation and distribution of the 'Zotob' worm, which struck… https://www.virusbulletin.com/blog/2006/09/zotob-authors-jailed/

Phishing records broken in July

Highest ever numbers of phishing sites and brands, reports APWG.
Highest ever numbers of phishing sites and brands, reports APWG. 154 brands were recorded as targets for phishing attempts in July, according to the Anti Phishing Working Group… https://www.virusbulletin.com/blog/2006/09/phishing-records-broken-july/

Spearphishers track eBay trades

Auction losers tempted by second-chance phishes.
Auction losers tempted by second-chance phishes. As part of the general trend of more focused phishing, users of online auction house eBay are reporting phishes directly targeting… https://www.virusbulletin.com/blog/2006/09/spearphishers-track-ebay-trades/

Fake news site carries trojan

Conspiracy warning spam points to exploit web page.
Conspiracy warning spam points to exploit web page. A spam campaign is directing Australian readers to a faked news site designed to drop a trojan. The initial mails carry a stark… https://www.virusbulletin.com/blog/2006/09/fake-news-site-carries-trojan/

Botnet keepers rake in adware cash

Zombie herder makes $430 per day from single piece of adware.
Zombie herder makes $430 per day from single piece of adware. According to research by the German Honeynet Project, a botnet controller who installed adware including DollarRevenue… https://www.virusbulletin.com/blog/2006/09/botnet-keepers-rake-adware-cash/

More AV products suffer flaws

Vulnerabilities found in AntiVir and avast!.
Vulnerabilities found in AntiVir and avast!. Security defects in two anti-virus products have been reported by security watch company Secunia in the last week. While the AntiVir… https://www.virusbulletin.com/blog/2006/09/more-av-products-suffer-flaws/

« Previous 1...9596979899...121 Next »