Virus Bulletin - October 2009


Editor: Helen Martin

Technical Consultant: John Hawes

Technical Editor: Morton Swimmer

Consulting Editors: Ian Whalley, Nick FitzGerald, Richard Ford, Edward Wilding

2009-10-01


Comment

Social networking meets social engineering

'Just when we thought things couldn’t get any more volatile, along came social networking.' Jeff Aboud, In-Focus Marketing.

Jeff Aboud - In-Focus Marketing, USA

News

More phish

Recent reports show phishing still on the rise.

Helen Martin - Virus Bulletin, UK

DHS to recruit security professionals

1,000 security professionals sought.

Helen Martin - Virus Bulletin, UK

Security Essentials causes stir

Microsoft's new release sparks debate.

Helen Martin - Virus Bulletin, UK

Malware prevalence report

August 2009

The Virus Bulletin prevalence table is compiled monthly from virus reports received by Virus Bulletin; both directly, and from other companies who pass on their statistics.


Malware analysis

Flying solo

Continuing his series of analyses of viruses contained in the EOF-rRlf-DoomRiderz virus zine, Peter Ferrie looks at a virus named ‘Pilot’.

Peter Ferrie - Microsoft, USA

Conference reports

Geneva convention

Ears still ringing from the sound of yodelling and (to a lesser degree) jet planes, Helen Martin reflects on VB2009 - one of VB's biggest conferences to date.

Helen Martin - Virus Bulletin, UK

7th German Anti Spam Summit 2009

Sorin Mustaca reports on the 7th German Anti Spam Summit.

Sorin Mustaca - Avira, Germany

Features

Anti-phishing landing page: turning a 404 into a teachable moment

Ponnurangam Kumaraguru and colleagues describe a collaborative project between the Anti-Phishing Working Group and Carnegie Mellon University that aims to educate users about the dangers of phishing by displaying an educational message in place of phishing sites that have been taken down.

Ponnurangam Kumaraguru - Institute of Information Technology Delhi, India, Lorrie Faith Cranor - Carnegie Mellon University, USA & Laura Mather - Anti-Phishing Working Group, USA

An update on spamming botnets: are we losing the war?

Marios Kokkodis and Michalis Faloutsos present the results of an empirical study of spamming activity, discussing the temporal spreading of spammers across the IP space and illustrating the evolution of high-activity spamming IP spaces.

Marios Kokkodis - University of California Riverside, USA & Michalis Faloutsos - University of California Riverside, USA

Comparative review

Windows Server 2008 Standard Edition SP2 x86

This month VB's test team put 26 products to the test on Windows Server 2008. John Hawes has the full results.

John Hawes - Virus Bulletin

Calendar

Anti-malware industry events

Must-attend events in the anti-malware industry - dates, locations and further details.


 

Latest articles:

VB2018 paper: Fake News, Inc.

As the world grapples with massive disinformation campaigns waged by the intelligence agencies of hostile nations, we should not forget that such activities are not limited to the purview of the Bears or Pandas of the world, and that even relatively…

Alternative communication channel over NTP

Nikolaos Tsapakis explores Network Time Protocol (NTP) as an alternative communication channel, providing practical examples, code, and the basic theory behind the idea.

VB2018 paper: Under the hood: the automotive challenge

In an average five-year-old car, there are about 30 different computers on board. In an average new car, there are double that number, and in some cases up to 100. That’s the size of network an average SMB would have, only there’s no CIO/CISO, and…

VB2018 paper: Android app deobfuscation using static-dynamic cooperation

Malicious Android applications are quite common, and can even be found from time to time in the Google Play Store. Thus, a lot of work has been done in both industry and academia on Android app analysis, and in particular, static code analysis. One…

VB2018 paper: Anatomy of an attack: detecting and defeating CRASHOVERRIDE

CRASHOVERRIDE is the first publicly known malware designed to impact electric grid operations. Reviewing previously unavailable data covering logs, forensics, and various incident information, in this paper Joe Slowik outlines the CRASHOVERRIDE…

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.