VB Blog

Vulnerabilities play only a tiny role in the security risks that come with mobile phones

Posted by Martijn Grooten on Nov 9, 2017

Both bad news (all devices were pwnd) and good news (pwning is increasingly difficult) came from the most recent mobile Pwn2Own competition. But the practical security risks that come with using mobile phones have little to do with vulnerabilities.

Posted by Martijn Grooten on Nov 8, 2017

At VB2017 in Madrid, industry veteran and ESET Senior Research Fellow David Harley presented a paper on the state of security software testing. Today we publish David's paper in both HTML and PDF format.

Posted by Martijn Grooten on Nov 3, 2017

Trickbot, a banking trojan which appeared this year, seems to be a new, more modular, and more extensible malware descendant of the notorious Dyre botnet trojan. At VB2017, Symantec researcher Andrew Brandt presented a walkthrough of a typical Trickbot infection process, and its aftermath, as seen through the lens of a tool used to perform man-in-the-middle decryption. Today, we publish both Andrew's slides and the recording of his presentation.

Posted by Martijn Grooten on Nov 2, 2017

Today, we publish a short paper in which CERT Société Générale presents FAME, its open source malware analysis framework.

Posted by Martijn Grooten on Oct 31, 2017

Ebury and Mayhem, two families of Linux server malware, about which VB published papers back in 2014, are still active and have received recent updates.

Posted by Martijn Grooten on Oct 27, 2017

Crypton, a tool developed by F5 Networks researchers Julia Karpin and Anna Dorfman, aims to speed up the reverse engineering process by decrypting encrypted content found in a (malicious) binary. The researchers described the tool in a paper which they presented at VB2017 in Madrid. Today, we publish both the paper and the recording of their presentation.

Posted by Martijn Grooten on Oct 25, 2017

For many people, the threat of an abusive partner or ex-partner is very real - and the market for consumer spyware worryingly large. Today, we publish the recording of a presentation on the subject of consumer spyware given at VB2017 by The Daily Beast reporter Joseph Cox.

Posted by Martijn Grooten on Oct 23, 2017

At the VB2017 gala dinner, the fourth Péter Szőr Award was presented to Sophos researcher Gábor Szappanos for his paper "AKBuilder – the crowdsourced exploit kit".

Posted by Martijn Grooten on Oct 20, 2017

We publish the VB2017 paper and video by Kaspersky Lab researchers Juan Andres Guerrero-Saade and Costin Raiu, in which they look at fourth-party collection (spies spying on other spies' campaigns) and its implications for attribution.

Posted by Martijn Grooten on Oct 11, 2017

Virus Bulletin is a company - and a conference - with a mission: to further the research in and facilitate the fight against digital threats. To help us in this mission, we want to hear from those who didn't come to Madrid. What is your impression of the VB Conference? What did you think of this year's programme? And why couldn't you come to Madrid?

Previous1...2829303132...215Next

Search blog

Samsung site hosting malware

Websense reports trojans found on electronics giant's servers.
Websense reports trojans found on electronics giant's servers. A US-hosted website belonging to Samsung Telecommunications America, a subsidiary of South Korean electronics giant… https://www.virusbulletin.com/blog/2006/09/samsung-site-hosting-malware/

Zango not guilty on spyware charges

Spyware bad, adware OK, says court.
Spyware bad, adware OK, says court. Adware-supported 'online media company' Zango has had accusations of using spyware dashed by a Chicago, Illinois court. The class action case,… https://www.virusbulletin.com/blog/2006/09/zango-not-guilty-spyware-charges/

Phishers cast nets less wide

More scams hitting fewer targets, says report.
More scams hitting fewer targets, says report. According to RSA Security's August report on online fraud, the number of brands attacked by phishing scams fell by 20% last month,… https://www.virusbulletin.com/blog/2006/09/phishers-cast-nets-less-wide/

Spyware firms charged $2 million

FTC takes cash, bans from future naughtiness.
FTC takes cash, bans from future naughtiness.Enternet Media and ConSpy & Co., the companies behind products including Miracle Search and EliteBar, have been forced to pay out over… https://www.virusbulletin.com/blog/2006/09/spyware-firms-charged-2-million/

'Magic Quadrant' study unveiled

AV industry future revealed - must do better.
AV industry future revealed - must do better. Industry analyst and predictor Gartner has released its annual 'Magic Quadrant' study of the current state and likely future of the AV… https://www.virusbulletin.com/blog/2006/09/magic-quadrant-study-unveiled/

MS sues UK spammer

Civil action avoids spam law technicalities.
Civil action avoids spam law technicalities.Microsoft has sued and reached an out-of-court settlement with UK spammer Paul Fox, after apparently despairing of finding any success… https://www.virusbulletin.com/blog/2006/09/ms-sues-uk-spammer/

Subliminal message hidden in spam

Mail campaign aims to sneak into readers' subconscious minds.
Mail campaign aims to sneak into readers' subconscious minds. A spam campaign is using the classic 'submliminal message' technique in an attempt to implant thoughts in the minds of… https://www.virusbulletin.com/blog/2006/09/subliminal-message-hidden-spam/

Nine years for spam felon

Tough sentence upheld despite free-speech claims.
Tough sentence upheld despite free-speech claims. A US man convicted two years ago under the state of Virginia's anti-spam laws has lost an appeal against his conviction. The case,… https://www.virusbulletin.com/blog/2006/09/nine-years-spam-felon/

Word zero-day exploited

Trojan uses unpatched hole in office software.
Trojan uses unpatched hole in office software. At least one trojan has been seen in the wild exploiting a newly discovered vulnerability in Microsoft's Word 2000 software. The… https://www.virusbulletin.com/blog/2006/09/word-zero-day-exploited/

Phishing on the rise

One in three malicious emails a phish, says MessageLabs.
One in three malicious emails a phish, says MessageLabs. A report on the current state of digital security has revealed that phishing scams constitute a growing danger to computer… https://www.virusbulletin.com/blog/2006/09/phishing-rise/

Gromozon mystery clearing

Cleaner tool aims to remove sophisticated attack.
Cleaner tool aims to remove sophisticated attack. The shadowy blended threat known as Gromozon has slowly been gaining notoriety in recent weeks, particularly after some in-depth… https://www.virusbulletin.com/blog/2006/09/gromozon-mystery-clearing/

Mobile snoopware labelled spyware

Future phone privacy threatened.
Future phone privacy threatened. Reports this week highlighted the problem of spyware running on mobile phones, and the consequences this could have for privacy. A commercial… https://www.virusbulletin.com/blog/2006/09/mobile-snoopware-labelled-spyware/

New New Zealand spam laws to allow spam

Adjustments to laws may let 'non-commercial' spam continue.
Adjustments to laws may let 'non-commercial' spam continue. Recommendations have been made to dilute tough new anti-spam laws currently being debated by the New Zealand government.… https://www.virusbulletin.com/blog/2006/09/new-new-zealand-spam-laws-allow-spam/

CA in Windows FP

eTrust identifies critical file as virus.
eTrust identifies critical file as virus. A mistake at CA caused some trouble over the weekend, as its eTrust products started identifying part of the Windows local authentication… https://www.virusbulletin.com/blog/2006/09/ca-windows-fp/

AT&T hack led to spearphish

Stolen details used to trick victims out of further info.
Stolen details used to trick victims out of further info. Transaction details stolen as part of last weekend's security breach of a shopping site run by US phone giant AT&T were… https://www.virusbulletin.com/blog/2006/09/amp-t-hack-led-spearphish/

A fine, a curfew and a treasure hunt

Round up of the month's spammer penalties.
Round up of the month's spammer penalties. Kicking off a round-up of some of the anti-spam penalties issued worldwide this month, the Chinese government has made an underwhelming… https://www.virusbulletin.com/blog/2006/09/fine-curfew-and-treasure-hunt/

September issue of VB published

The September issue of Virus Bulletin is now available for subscribers to download.
The September issue of Virus Bulletin is now available for subscribers to download. The September 2006 issue of Virus Bulletin is now available for subscribers to browse online… https://www.virusbulletin.com/blog/2006/09/september-issue-vb-published/

Spot that spammer

Quiz tests consumers' ability to identify spam causing sites.
Quiz tests consumers' ability to identify spam causing sites. Last month, McAfee invited web users to spot the undesirable website, in an eight-question quiz entitled: 'Can you… https://www.virusbulletin.com/blog/2006/09/spot-spammer/

Nearly VB 100%

Near misses.
Near misses. In the recent Windows XP comparative review (see VB, June 2006, p.11), VB reported that VirusBuster failed to achieve the results required for a VB 100% award. After… https://www.virusbulletin.com/blog/2006/09/nearly-vb-100/

Testing patience

Consumer Reports does it again.
Consumer Reports does it again. After having come in for a great deal of criticism in recent weeks over its AV testing methodology (see VB, September 2006, p.2), Consumer Reports… https://www.virusbulletin.com/blog/2006/09/testing-patience/

« Previous 1...96979899100...121 Next »