Bulletin

An indispensable source of reference for anyone concerned with computer security, the Bulletin is the forum through which leading security researchers publish the latest security research and information in a bid to share knowledge with the security community. Publications cover the latest threats, new developments and techniques in the security landscape, opinions from respected members of the industry, and more. The Bulletin archives offer informative articles going back to 1989. Our editorial team is happy to hear from anyone interested in submitting a paper for publication.

Indian government launches spy system

Indian government announces Internet surveillance system.

Read more  

Effusion – a new sophisticated injector for Nginx web servers

Evgeny Sidorov (Yandex)
Konstantin Otrashkevich (Yandex)

At VB2013 Evgeny Sidorov spoke about three modern approaches used by attackers to embed malicious code into HTTP responses. One such approach was the use of web-server modules for malware distribution. Here, Evgeny and his colleagues describe…

Read more  

Medfos– an all-purpose redirector

Neo Tan (Fortinet)

Medfos is a heavily obfuscated trojan family which downloads modules capable of redirecting search engine results in the most popular browsers. Benjamin Chang and Neo Tan dissect the way the Medfos downloader deploys its downloaded modules, and the…

Read more  

SGX: the good, the bad and the downright ugly

Richard Ford (Florida Institute of Technology)

A brand new instruction set coming to Intel’s processors in the near future has tremendous potential implications both for malware authors and for defenders. Shaun Davenport and Richard Ford describe the SGX technology and how people might use it.

Read more  

Medfos - an all-purpose redirector: Appendix

Neo Tan (Fortinet)

Appendix to Medfos - an all-purpose redirectot

Read more  

The past and future of international cooperation

Wout de Natris urges parliamentarians to facilitate cooperation across borders and asks: why is it necessary, in 2013, to give up a little bit of sovereignty and territoriality?

Read more  

Crystal ball gazing

Round-up of some of the security industry's predictions for the year ahead.

Read more  

In memoriam: Péter Ször 1970-2013

The untimely death of security researcher Péter Ször sent shockwaves across anti-malware community last month. Some of those who knew him best pay tribute to a brilliant mind and a true gentleman.

Read more  

EICAR 2013: Data protection <> data security?

Eddy Willems presents a round up of the 22nd EICAR Conference, held in Hannover last month.

Read more  

Hands in the cookie JAR

Viruses for Java are relatively rare, and parasitic viruses for Java are even rarer. The Java/Handjar virus infects Java applications by placing its virus code inside a JAR file and including a reference to the virus class file. Peter Ferrie has the…

Read more  
Previous1...3132333435...114Next

Search the Bulletin


Bulletin Archive

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.