Virus Buletin Board

The latest Blog posts from the VB team
Updated: 5 min 31 sec ago

VB2016 paper: Steam stealers: it's all fun and games until someone's account gets hijacked

Fri, 06/23/2017 - 10:56
Last year, Kaspersky Lab researcher Santiago Pontiroli and PwC's Bart Parys presented a VB2016 paper analysing the malicious threats faced by users of the Steam online gaming platform, and highlighting how organized criminals are making money with these profitable schemes. Today, we publish the paper.

Read more
Categories: Data nyheter

Research paper shows it may be possible to distinguish malware traffic using TLS

Thu, 06/22/2017 - 11:04
Researchers at Cisco have published a paper describing how it may be possible to use machine learning to distinguish malware command-and-control traffic using TLS from regular enterprise traffic, and to classify malware families based on their encrypted C&C traffic.

Read more
Categories: Data nyheter

Is CVE-2017-0199 the new CVE-2012-0158?

Tue, 06/20/2017 - 10:55
After five years of exploitation in a wide variety of attacks, CVE-2012-0158 may have found a successor in CVE-2017-0199, which is taking the Office exploit scene by storm.

Read more
Categories: Data nyheter

Review: BSides London 2017

Mon, 06/19/2017 - 10:52
Virus Bulletin was a proud sponsor of BSides London 2017 - Martijn Grooten reports on a great event.

Read more
Categories: Data nyheter

VB2017: one of the most international security conferences

Thu, 06/15/2017 - 15:35
It is well known that the problem of cybersecurity is a global one that affects users worldwide - but it's also one that has some unique local flavours. With speakers representing at least 24 countries, VB2017 is one of the most international security conferences on the circuit, allowing attendees to hear the viewpoints of experts from around the world. Register before 1 July and receive a 10% Early Bird discount.

Read more
Categories: Data nyheter

VB2016 paper: Diving into Pinkslipbot's latest campaign

Mon, 06/12/2017 - 11:10
Qakbot or Qbot, is a banking trojan that makes the news every once in a while and was the subject of a VB2016 paper by Intel Security researchers Sanchit Karve, Guilherme Venere and Mark Olea. In it, they provided a detailed analysis of the Pinkslipbot/Qakbot trojan and its then latest campaign. Their full paper is now available to download or read online.

Read more
Categories: Data nyheter

Book review: Spam: A Shadow History of the Internet

Fri, 06/02/2017 - 11:38
VB Editor Martijn Grooten reviews Finn Brunton's book 'Spam: A Shadow History of the Internet'.

Read more
Categories: Data nyheter

Virus Bulletin to sponsor BSides London

Thu, 06/01/2017 - 10:39
Virus Bulletin is proud to be a Silver sponsor of BSides London next week; we look forward to the event and to meeting many security professionals.

Read more
Categories: Data nyheter

VB2016 video: Last-minute paper: Malicious proxy auto-configs: an easy way to harvest banking credentials

Tue, 05/30/2017 - 12:56
In a VB2016 last-minute presentation, Jaromír Horejší and Jan Širmer looked at Retefe, a trojan that has targeted banks in several European countries and used malicious proxy auto-config filesto redirect users' traffic to a server controlled by the attackers. A recording of their presentation is now available to view on our YouTube channel.

Read more
Categories: Data nyheter

WannaCry shows we need to understand why organizations don't patch

Wed, 05/17/2017 - 08:55
Perhaps the question we should be asking about WannaCry is not "why do so many organizations allow unpatched machines to exist on their networks?" but "why doesn't patching work reasonably well most of the time?"

Read more
Categories: Data nyheter

Modern security software is not necessarily powerless against threats like WannaCry

Mon, 05/15/2017 - 11:57
The WannaCry ransomware has affected many organisations around the world, making it probably the worst and most damaging of its kind. But modern security is not necessarily powerless against such threats.

Read more
Categories: Data nyheter

Throwback Thursday: CARO: A personal view

Thu, 05/11/2017 - 11:48
This week sees the 11th International CARO Workshop taking place in Krakow, Poland – a prestigious annual meeting of anti-malware and security experts. As a founding member of CARO, Fridrik Skulason was well placed, in August 1994, to shed some light on the organization, to explain in detail CARO's main activities and functions, as well as the reasons behind its strict membership regulations.

Read more
Categories: Data nyheter

VB2016 paper: Uncovering the secrets of malvertising

Wed, 05/10/2017 - 11:10
Malicious advertising, a.k.a. malvertising, has evolved tremendously over the past few years to take a central place in some of today’s largest web-based attacks. It is by far the tool of choice for attackers to reach the masses but also to target them with infinite precision and deliver such payloads as ransomware. Today, we publish a paper presented at VB2016 in Denver by Malwarebytes researchers Jérôme Segura and Chris Boyd, in which they look at the advertising ecosystem, how it is used, and at what techniques are being utilised to spread malware

Read more
Categories: Data nyheter

Throwback Thursday: Tools of the DDoS Trade

Thu, 05/04/2017 - 18:00
As DDoS attacks become costlier to fix and continue to increase in both number and diversity, we turn back the clock to 2000, when Aleksander Czarnowski took a look at the DDoS tools of the day.

Read more
Categories: Data nyheter

VB2016 paper: Building a local passiveDNS capability for malware incident response

Thu, 05/04/2017 - 10:22
At VB2016, Splunk researchers Kathy Wang and Steve Brant presented a Splunk app that can be used to locally collect passive DNS data. A recording of their presentation is now available to view on our YouTube channel.

Read more
Categories: Data nyheter

VB2016 video: Last-minute paper: A malicious OS X cocktail served from a tainted bottle

Fri, 04/28/2017 - 15:34
In a VB2016 last-minute presentation, ESET researchers Peter Kalnai and Martin Jirkal looked at the OS X malware threats KeRanger and Keydnap, that both spread through a compromised BitTorrent client. A recording of their presentation is now available to view on our YouTube channel.

Read more
Categories: Data nyheter

Consumer spyware: a serious threat with a different threat model

Tue, 04/25/2017 - 12:05
Consumer spyware is a growing issue and one that can have serious consequences: its use is increasingly common in domestic violence. But do our threat models consider the attacker with physical access to, and inside knowledge of the victim?

Read more
Categories: Data nyheter

VB2016 paper: Debugging and monitoring malware network activities with Haka

Mon, 04/24/2017 - 12:52
In their VB2016 paper, Stormshield researchers Benoît Ancel and Mehdi Talbi introduced Haka, an open-source language to monitor, debug and control malicious network traffic. Both their paper and the video recording of their presentation are now available to read/view on www.virusbulletin.com.

Read more
Categories: Data nyheter

VB2017: a wide ranging and international conference programme

Thu, 04/13/2017 - 10:07
We are proud to announce a very broad and very international programme for VB2017, which will take place in Madrid, 4-6 October 2017.

Read more
Categories: Data nyheter

John Graham-Cumming and Brian Honan to deliver keynote addresses at VB2017

Mon, 04/10/2017 - 14:06
Virus Bulletin is excited to announce John-Graham Cumming and Brian Honan as the two keynote speakers for VB2017 in Madrid.

Read more
Categories: Data nyheter

Pages

KONTAKTA OSS

Tel: 0930-318 13

SMS: 076-815 18 06

email: nash@nashnet.nu

Contact

Custom Search