An indispensable source of reference for anyone concerned with computer security, the Bulletin is the forum through which leading security researchers publish the latest security research and information in a bid to share knowledge with the security community. Publications cover the latest threats, new developments and techniques in the security landscape, opinions from respected members of the industry, and more. The Bulletin archives offer informative articles going back to 1989. Our editorial team is happy to hear from anyone interested in submitting a paper for publication.

VB2015 paper: POS Fraud Trends and Counter-Actions to Mass Fraud

Ken Dunham (iSIGHT Partners)

Point-of-Sale (POS) e-crime fraud was of little discussion until the fall of 2013. Since then, a large number of retail stores in the US have announced major breaches. The number of infected organizations is in the thousands, with credit card…

Read more  

VB2015 paper: It's A File Infector... It’s Ransomware... It's Virlock

Vlad Craciun (Bitdefender)
Andrei Nacu (Bitdefender)
Mihail Andronic (Bitdefender)

Win32.Virlock, with all its variations, is both a new kind of file infector and a piece of ransomware (screen-locker) at the same time. In this paper, we aim to cover the techniques used by this virus and discuss methods that can be used to detect…

Read more  

VB2015 paper: Sizing Cybercrime: Incidents and Accidents, Hints and Allegations

Stephen Cobb (ESET)

Cybercrime certainly feels like a major threat to the security of networked systems upon which so much of daily life depends in the world today. Criminals routinely use digital networks to steal data, defraud companies and consumers, and disrupt…

Read more  

VB2015 paper: The Evolution of Ransomware: From CryptoWall to CTBLocker

Christy Chung (Fortinet)
Neo Tan (Fortinet)

The CryptoLocker ransomware was first discovered in late 2013. Millions of computers were infected, billions of files were encrypted, and millions of dollars’ worth of ransom was collected within several months. It caught a lot of researchers’…

Read more  

VB2014 paper: Tech Support Scams 2.0: An inside look into the evolution of the classic Microsoft tech support scam

Jérôme Segura (Malwarebytes)

Tech support scams have been around for a long time, and despite all the attention they have received, they are only getting worse. Scammers are diversifying - no longer just using the Microsoft cold-calling technique but now also using deceptive ads…

Read more  

VB2014 paper: Evolution of Android exploits from a static analysis tools perspective

Anna Szalay (Sophos)
Jagadeesh Chandraiah (Sophos)

With Android being the fastest-growing mobile OS, and with a rapidly increasing number of Android malware samples in existence, it is important to acknowledge the risk of exploitation of security vulnerabilities by malware. In their VB2014 paper,…

Read more  

VB2014 paper: Android packers: facing the challenges, building solutions

Rowland Yu (Sophos)

A growing percentage of Android malware, including Zeus, SMSSend, and re-packaged applications, are packed using legitimate packers originally developed to protect the intellectual property of Android applications, with other malware having been…

Read more  

VB2014 paper: It has a EULA, it must be legit

Stefan Catalin Hanu (Bitdefender)
Stefan Mosoi (Bitdefender)
Marius Lucaci (Bitdefender)

Analysing greyware applications and taking a definitive decision on whether or not to block them is more than often a tedious job, combining research and both dynamic and static analysis. In their VB2014 paper, Stefan Catalin Hanu, Stefan Mosoi and…

Read more  

VB2014 paper: An in-depth analysis of abuse on Twitter

Jonathan Oliver (Trend Micro)
Christopher Ke (Deakin University)
Paul Pajares (Trend Micro)
Chao Chen (Deakin University)
Yang Xiang (Deakin University)

In their VB2014 paper, Jonathan Oliver and his colleagues look at abuse on Twitter.

Read more  

VB2014 paper: Linux-based Apache malware infections: biting the hand that serves us all

Cathal Mullaney (Symantec)
Sayali Kulkarni (Symantec)

In their VB2014 paper, Cathal Mullaney and Sayali Kulkarni demonstrate that targeting Linux-based Apache web servers is an active and extremely effective method of malware infection. They present an overview of Linux malware and a technical analysis…

Read more  

Search the Bulletin

Bulletin Archive