Bulletin

Exepacker blacklisting part 3

In the final part of the series on exepacker blacklisting, Robert Neumann takes a look at how all the processing and analysis techniques are put into practice in a real-life situation.

Botherders herded

Botherder arrests, court appearances and convictions.

29A folds

Virus writers hang up their hats.

Pandex: the botnet that could

Pandex has attracted very little attention from the media and generated little discussion between malware researchers and among the general populace. Chandra Prakash and Adam Thomas provide an overview of the Pandex operation and take an in-depth…

European providers take proactive stance in security and anti-spam

EU service providers show improvements in anti-spam measures.

How inbound traffic control improves spam filtering

Ken Simpson considers the implications of rising spam volume despite increasing accuracy of content filters.

How to disable WFP using physical disk information

Recently, a threat has appeared which obtains a file’s physical disk location information with the aid of the Windows system APIs, then proceeds to infect the corresponding system file. Ha Young Yang describes exactly how physical disk information is…

Assessment war: Windows services

In the world of Web 2.0, Java, .NET and other hot technologies we are often guilty of forgetting about the core components that make it all possible. Aleksander Czarnowski describes a simple attack scenario based on a high-privilege Windows service…

Predictions about the prediction scam

The prediction scam has yet to make it into electronic format. A group of researchers from the University of Calgary get ahead of the game and explain how they believe it will work.

Malware vs. anti-malware: (how) can we still survive?

Andreas Marx (AV-TEST)

‘Well executed and comprehensive tests will light the way to better products.’ Andreas Marx, AV-Test.org