VB Blog

VB2017 paper: Offensive malware analysis: dissecting OSX/FruitFly.B via a custom C&C server

Posted by   Martijn Grooten on   Nov 29, 2017

At VB2017 in Madrid, macOS malware researcher Patrick Wardle presented the details of a specific piece of Mac malware, FruitFly, which he analysed through a custom C&C server - a technique that will also be of interest for researchers of malware on other platforms. Today we publish both Patrick's paper and the recording of his presentation.

Read more  

Tizi Android malware highlights the importance of security patches for high-risk users

Posted by   Martijn Grooten on   Nov 28, 2017

Researchers from Google have taken down 'Tizi', an Android malware family, that used nine already patched vulnerabilities to obtain root on infected devices.

Read more  

Virus Bulletin to attend AMTSO, AVAR and Botconf

Posted by   Martijn Grooten on   Nov 27, 2017

Next week, Virus Bulletin researchers will be attending the AMTSO meeting and AVAR conference in Beijing, China, as well as the 5th edition of the Botconf conference in Montpellier, France.

Read more  

VB2017 video: FinFisher: New techniques and infection vectors revealed

Posted by   Martijn Grooten on   Nov 24, 2017

Today, we publish the video of the VB2017 presentation by ESET researcher Filip Kafka, who looked at recent changes in the FinFisher government malware, including its infection vectors.

Read more  

Throwback Thursday: The beginning of the end(point): where we are now and where we'll be in five years

Posted by   Martijn Grooten on   Nov 23, 2017

We look back at the VB2016 presentation by Adrian Sanabria on the state of endpoint security, both now and in the future.

Read more  

VB2017 paper: Beyond lexical and PDNS: using signals on graphs to uncover online threats at scale

Posted by   Martijn Grooten on   Nov 22, 2017

At VB2017 in Madrid, Cisco Umbrella (OpenDNS) researchers Dhia Mahjoub and David Rodriguez presented a new approach to detecting infected machines using graphs to detect botnet traffic at scale. Today we publish both Dhia and David's paper and the recording of their presentation.

Read more  

Firefox 59 to make it a lot harder to use data URIs in phishing attacks

Posted by   Martijn Grooten on   Nov 21, 2017

Firefox developer Mozilla has announced that, as of version 59 of the browser, many kinds of data URIs, which provide a way to create "domainless web content", will not be rendered in the browser, thus making this trick - used in various phishing campaigns - a lot less attractive.

Read more  

Standalone product test: FireEye Endpoint

Posted by   Martijn Grooten on   Nov 16, 2017

Virus Bulletin ran a standalone test on FireEye's Endpoint Security solution.

Read more  

VB2017 video: Consequences of bad security in health care

Posted by   Martijn Grooten on   Nov 13, 2017

Jelena Milosevic, a nurse with a passion for IT security, is uniquely placed to witness poor security practices in the health care sector, and to fully understand the consequences. Today, we publish the recording of a presentation given by Jelena at VB2017 in Madrid, in which she shared her inside view of security in hospitals.

Read more  

Vulnerabilities play only a tiny role in the security risks that come with mobile phones

Posted by   Martijn Grooten on   Nov 9, 2017

Both bad news (all devices were pwnd) and good news (pwning is increasingly difficult) came from the most recent mobile Pwn2Own competition. But the practical security risks that come with using mobile phones have little to do with vulnerabilities.

Read more  
Previous1...2728293031...215Next

Search blog

UK police 'can no longer cope' with e-crime

Report demands more resources and national IT squad.
Report demands more resources and national IT squad. A report issued by the Metropolitan Police has admitted that, despite serious under-reporting of computer-related crime… https://www.virusbulletin.com/blog/2007/01/uk-police-can-no-longer-cope-e-crime/

MySpace sues Spam King

Serial spammer faces more fines for abusing social system.
Serial spammer faces more fines for abusing social system. Regular spammer and lawsuit loser Scott Richter, last seen being sued by Infinite Monkeys, faces more legal and financial… https://www.virusbulletin.com/blog/2007/01/myspace-sues-spam-king/

Fujacks hype incenses analysts

Chinese reports of 'major threat' thought unlikely.
Chinese reports of 'major threat' thought unlikely. Reports in the Chinese Shanghai Daily of a 'five-star cyber worm' which could be 'one of the most devastating cyber worms ever… https://www.virusbulletin.com/blog/2007/01/fujacks-hype-incenses-analysts/

More phishers and spammers face prison time

US, Dutch and Japanese police crack down on online bad guys.
US, Dutch and Japanese police crack down on online bad guys. Of a series of arrests and convictions this week, the most spectacular headlines centre on the potential 101-year… https://www.virusbulletin.com/blog/2007/01/more-phishers-and-spammers-face-prison-time/

Wide support for spyware teacher

Malware infestation alleged at root of porn conviction.
Malware infestation alleged at root of porn conviction. A Connecticut teacher, recently convicted of morals offences after her laptop displayed a range of pornographic sites to a… https://www.virusbulletin.com/blog/2007/01/wide-support-spyware-teacher/

UK anti-spam victory for Microsoft

Lawsuit won against UK spammer.
Lawsuit won against UK spammer. Microsoft has won a lawsuit against a spammer based in the UK. Microsoft launched legal proceedings against 37-year-old Paul Martin McDonald after… https://www.virusbulletin.com/blog/2007/01/uk-anti-spam-victory-microsoft/

January

Anti-virus and security related news provided by independent anti-virus advisors, Virus Bulletin
https://www.virusbulletin.com/blog/2007/01/

Sony rootkit settlement costs escalate

Use of hidden DRM software costs company $5.75m.
Use of hidden DRM software costs company $5.75m. Sony BMG Music Entertainment's ill-advised use of hidden digital rights management (DRM) software on its CDs in late 2005 has cost… https://www.virusbulletin.com/blog/2007/01/sony-rootkit-settlement-costs-escalate/

Government agencies take anti-phishing action

Spear-phishing awareness training and testing for staff.
Spear-phishing awareness training and testing for staff. Personnel working for the US Coast Guard have been ordered to take phishing awareness training, while other US government… https://www.virusbulletin.com/blog/2007/01/government-agencies-take-anti-phishing-action/

2007

Latest news from the anti-virus industry provided by independent anti-virus advisors, Virus Bulletin
NewsMagic lanterns shine at terroristsVirus Bulletin finds 40% of users think governments should write viruses to bug terrorists.19 December 2007$3.2 billion lost in phishing… https://www.virusbulletin.com/blog/2007/

MMS mobile phone exploit released

Buffer overflow vulnerability in MMS SMIL exploited.
Buffer overflow vulnerability in MMS SMIL exploited. Last month saw the publication of proof-of-concept code exploiting a vulnerability in the popular mobile phone Multimedia… https://www.virusbulletin.com/blog/2007/01/mms-mobile-phone-exploit-released/

'Big Yellow' worm exploits slow Symantec patchers

Worm spotted targeting 6-month-old vulnerability in AV products.
Worm spotted targeting 6-month-old vulnerability in AV products. An alert has been issued by eEye Digital Security researchers for a new worm, which they have called 'Big Yellow',… https://www.virusbulletin.com/blog/2006/12/big-yellow-worm-exploits-slow-symantec-patchers/

UK taxman warns of rebate phish

Mails promising tax refund just another scam.
Mails promising tax refund just another scam.Her Majesty's Revenue and Customs (HMRC), the UK taxation authority, has issued a warning regarding a phishing campaign using its name.… https://www.virusbulletin.com/blog/2006/12/uk-taxman-warns-rebate-phish/

Microsoft wins block on spam list seller

Court bars bulk email address sales site from further business.
Court bars bulk email address sales site from further business.Microsoft has won a judgement against a UK man accused of selling lists of email addresses for the purpose of… https://www.virusbulletin.com/blog/2006/12/microsoft-wins-block-spam-list-seller/

BitDefender vulnerability disclosed

Details released of overflow issue reported and patched.
Details released of overflow issue reported and patched.BitDefender and several security-watching sites have unveiled details of a serious overflow vulnerability in the parsing of… https://www.virusbulletin.com/blog/2006/12/bitdefender-vulnerability-disclosed/

Yet more Word zero-day woes

Possible third vulnerability in popular software exploited.
Possible third vulnerability in popular software exploited. Reports are coming in of a new exploit for Microsoft's Word word processing software, amid speculation that the attack… https://www.virusbulletin.com/blog/2006/12/yet-more-word-zero-day-woes/

European mailer society signs spyware charter

Direct marketeers' association adopts code of good behaviour.
Direct marketeers' association adopts code of good behaviour. The Federation of European Direct and Interactive Marketing (FEDMA), a common-interest and self-regulatory body for… https://www.virusbulletin.com/blog/2006/12/european-mailer-society-signs-spyware-charter/

US Postal Service accused of spamming

Customer email campaign in breach of CAN-SPAM regulations.
Customer email campaign in breach of CAN-SPAM regulations. The US Postal Service (USPS) has come under fire from anti-spam activists after a mass email campaign promoting a new… https://www.virusbulletin.com/blog/2006/12/us-postal-service-accused-spamming/

UK phishing up 8000% in two years, says FSA

Government report shows massive rise in scams.
Government report shows massive rise in scams. A report presented to the UK government by the Financial Services Authority (FSA), the UK's financial watchdog organisation,… https://www.virusbulletin.com/blog/2006/12/uk-phishing-8000-two-years-says-fsa/

Putting a price on spam

Email-forwarding system lets users set a fee to let spam through.
Email-forwarding system lets users set a fee to let spam through. Email-forwarding system Boxbe has come up with a new way around the spam problem - by letting its users set a fee… https://www.virusbulletin.com/blog/2006/12/putting-price-spam/

« Previous 1...8889909192...121 Next »

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.