Virus Buletin Board

The latest Blog posts from the VB team
Updated: 25 min 10 sec ago

VB2019 paper: 2,000 reactions to a malware attack – accidental study

Tue, 03/24/2020 - 11:30
At VB2019 cybercrime journalist and researcher Adam Haertlé presented an analysis of almost 2000 unsolicited responses sent by victims of a malicious email campaign. Today we publish both his paper and the recording of his presentation.

Read more
Categories: Data nyheter

VB2019 paper: Why companies need to focus on a problem they do not know they have

Fri, 03/20/2020 - 11:01
Often unbeknownst to network administrators, many company networks are used to download child sexual abuse material. In a paper presented at VB2019 in London, NetClean’s Richard Matti and Anna Creutz looked at this problem and what companies can do, ultimately, to help safeguard children. Today we publish their full paper.

Read more
Categories: Data nyheter

VB2020 update - currently business as usual

Mon, 03/16/2020 - 13:20
Here at VB we are keeping a close eye on the global situation regarding the COVID-19 outbreak and the various travel restrictions and health advice, but in the meantime planning and arrangements for VB2020 are going ahead as usual, including the selection of papers.

Read more
Categories: Data nyheter

VB2019 paper: Defeating APT10 compiler-level obfuscations

Fri, 03/13/2020 - 11:07
At VB2019 in London, Carbon Black researcher Takahiro Haruyama presented a paper on defeating compiler-level obfuscations used by the APT10 group. Today we publish both Takahiro's paper and the recording of his presentation.

Read more
Categories: Data nyheter

VB2019 paper: Attribution is in the object: using RTF object dimensions to track APT phishing weaponizers

Thu, 03/12/2020 - 13:17
At VB2019 in London Michael Raggi (Proofpoint) and Ghareeb Saad (Anomali) presented a paper on the 'Royal Road' exploit builder (or weaponizer) and how the properties of RTF files can be used to track weaponizers and their users. Today we publish both their paper and the recording of their presentation.

Read more
Categories: Data nyheter

VB2019 presentation: Nexus between OT and IT threat intelligence

Wed, 03/11/2020 - 10:14
Operational technology, the mission critical IT in ICS, shares many similarities with traditional IT systems, but also some crucial differences. During the Threat Intelligence Practitioners’ Summit at VB2019, Dragos cyber threat intelligence analyst Selena Larson gave a keynote on these similarities and differences. Today we release the recording of her presentation.

Read more
Categories: Data nyheter

VB2019 paper: Kimsuky group: tracking the king of the spear-phishing

Tue, 03/10/2020 - 11:25
In a paper presented at VB2019 in London, researchers fron the Financial Security Institute detailed the tools and activities used by the APT group 'Kimsuky', some of which they were able to analyse through OpSec failures by the group. Today, we publish their paper.

Read more
Categories: Data nyheter

VB2019 paper: Play fuzzing machine - hunting iOS and macOS kernel vulnerabilities automatically and smartly

Mon, 03/09/2020 - 12:34
In a paper presented at VB2019 in London, Trend Micro researchers Lilang Wu and Moony Li explained how the hunt for vulnerabilities in MacOS and iOS operating systems can be made both smarter and more automatic. Today we publish both their paper and the recording of their presentation.

Read more
Categories: Data nyheter

VB2019 paper: Finding drive-by rookies using an automated active observation platform

Fri, 03/06/2020 - 12:18
In a last-minute paper presented at VB2019 in London, Rintaro Koike (NTT Security) and Yosuke Chubachi (Active Defense Institute, Ltd) discussed the platform they have built to automatically detect and analyse exploit kits. Today we publish the recording of their presentation.

Read more
Categories: Data nyheter

VB2019 paper: Pulling the PKPLUG: the adversary playbook for the long-standing espionage activity of a Chinese nation state adversary

Fri, 02/28/2020 - 14:21
The activities of China-based threat actor PKPLUG were detailed in a VB2019 paper by Palo Alto Networks researcher Alex Hinchliffe, who described the playbook of this long-standing adversary. Today we publish both Alex's paper and the recording of his presentation.

Read more
Categories: Data nyheter

VB2019 paper: Static analysis methods for detection of Microsoft Office exploits

Tue, 02/25/2020 - 15:20
Today we publish the VB2019 paper and presentation by McAfee researcher Chintan Shah in which he described static analysis methods for the detection of Microsoft Office exploits.

Read more
Categories: Data nyheter

New paper: LokiBot: dissecting the C&C panel deployments

Mon, 02/17/2020 - 10:38
First advertised as an information stealer and keylogger when it appeared in underground forums in 2015, LokiBot has added various capabilities over the years and has affected many users worldwide. In a new paper researcher Aditya Sood analyses the URL structure of the LokiBot C&C panels and how they have evolved over time.

Read more
Categories: Data nyheter

VB2019 presentation: Building secure sharing systems that treat humans as features not bugs

Fri, 02/14/2020 - 12:20
In a presentation at VB2019 in London, Virtru's Andrea Limbago described how, by exploring data sharing challenges through a socio-technical lens, it is possible to make significant gains toward the secure sharing systems and processes that are vital for innovation and collaboration. Today we release the recording of her presentation.

Read more
Categories: Data nyheter

VB2019 presentation: Attor: spy platform with curious GSM fingerprinting

Tue, 02/11/2020 - 11:38
Attor is a newly discovered cyber-espionage platform, use of which dates back to at least 2014 and which focuses on diplomatic missions and governmental institutions. Details of Attor were presented at VB2019 in London by ESET researcher Zuzana Hromcová. Today we release the recording of Zuzana's presentation.

Read more
Categories: Data nyheter

Why we encourage newcomers and seasoned presenters alike to submit a paper for VB2020

Thu, 02/06/2020 - 15:51
With the call for papers for VB2020 currently open, we explain why, whether you've never presented before or you're a conference circuit veteran, if you have some interesting research to share with the community we want to hear from you!

Read more
Categories: Data nyheter

VB2019 paper: The cake is a lie! Uncovering the secret world of malware-like cheats in video games

Wed, 02/05/2020 - 11:50
At VB2019 in London, Kaspersky researcher Santiago Pontiroli presented a paper on the growing illegal economy around video game cheats and its parallels with the malware industry. Today we publish both Santiago's paper and the recording of his presentation.

Read more
Categories: Data nyheter

VB2019 paper: Rich headers: leveraging the mysterious artifact of the PE format

Fri, 01/31/2020 - 12:01
In a paper presented at VB2019 in London, ESET researchers Peter Kálnai and Michal Poslušný discussed the subject of rich headers and how it can be useful in malware research. Today we publish both their paper and the recording of their presentation.

Read more
Categories: Data nyheter

VB2019 paper: Medical IoT for diabetes and cybercrime

Tue, 01/28/2020 - 12:06
At VB2019 in London, Fortinet researcher Axelle Apvrille presented a paper co-written with Aamir Lakhani that looked at the threats faced by those who use medical IoT devices to help manage their diabetes. Today we publish the researchers' paper, as well as the recording of Axelle's presentation.

Read more
Categories: Data nyheter

VB2019 paper: Spoofing in the reeds with Rietspoof

Fri, 01/24/2020 - 12:32
In a VB2019 paper Avast researchers Jan Sirmer, Luigino Camastra and Adolf Středa revealed full details of the Rietspoof malware. Today we publish their paper and the recording of the presentation given by Jan and Luigino in London.

Read more
Categories: Data nyheter

New paper: Behind the scenes of GandCrab's operation

Mon, 01/20/2020 - 11:55
The GandCrab ransomware regularly updated itself to newer versions to stay ahead of decryptors released by security researchers, and regularly included taunts, jokes and references to security organizations in its code. In a new paper, the AhnLab Security Analysis Team reveal the full details of the battle that went on between GandCrab and AhnLab.

Read more
Categories: Data nyheter

Pages

KONTAKTA OSS

Tel: 0930-318 13

SMS: 076-815 18 06

email: nash@nashnet.nu

Custom Search