Virus Buletin Board

The latest Blog posts from the VB team
Updated: 1 hour 4 min ago

VB2019 conference programme announced

Fri, 04/05/2019 - 17:08
VB is excited to reveal the details of an interesting and diverse programme for VB2019, the 29th Virus Bulletin International Conference, which takes place 2-4 October in London, UK.

Read more
Categories: Data nyheter

VB2018 paper: Under the hood - the automotive challenge

Wed, 03/27/2019 - 15:39
Car hacking has become a hot subject in recent years, and at VB2018 in Montreal, Argus Cyber Security's Inbar Raz presented a paper that provides an introduction to the subject, looking at the complex problem, examples of car hacks, and the challenges ahead. Today, we publish both Inbar's paper and the recording of his presentation.

Read more
Categories: Data nyheter

VB2018 paper and video: Android app deobfuscation using static-dynamic cooperation

Wed, 03/20/2019 - 09:32
Static analysis and dynamic analysis each have their shortcomings as methods for analysing potentially malicious files. Today, we publish a VB2018 paper by Check Point researchers Yoni Moses and Yaniv Mordekhay, in which they describe a method that combines static and dynamic analysis to defeat app obfuscation in Android binaries. We also publish the video of their presentation.

Read more
Categories: Data nyheter

VB2019 call for papers closes this weekend

Fri, 03/15/2019 - 10:16
The call for papers for VB2019 closes on 17 March, and while we've already received many great submissions, we still want more!

Read more
Categories: Data nyheter

Registration open for VB2019 ─ book your ticket now!

Wed, 03/13/2019 - 14:21
Registration for VB2019, the 29th Virus Bulletin International Conference, is now open, with an early bird rate available until 1 July.

Read more
Categories: Data nyheter

The VB2019 call for papers is about ... papers

Fri, 03/08/2019 - 12:57
When we are calling for papers for the Virus Bulletin conference as we are doing now, we really mean a written paper. But don't worry if you've never written a paper - we can help!

Read more
Categories: Data nyheter

VB2018 video: Adware is just malware with a legal department - how we reverse engineered OSX/Pirrit, received legal threats, and survived

Fri, 03/08/2019 - 12:36
Amit Serper first analysed the OSX/Pirrit adware in 2016, highlighting some of its malware-like techniques, and soon afterwards started receiving legal threats from the company behind it. At VB2018 Amit gave a presentation in which he discussed both the adware and the legal threats he received for calling it malware. Today, we publish the video of Amit's presentation.

Read more
Categories: Data nyheter

VB2018 paper: Anatomy of an attack: detecting and defeating CRASHOVERRIDE

Tue, 03/05/2019 - 14:09
In December 2016, the CRASHOVERRIDE malware framework was used to cause a blackout in Ukraine. At VB2018 in Montreal, Dragos researcher Joe Slowik presented a detailed paper on the framework, explaining how the malware works and how it targets various protocols used to operate the electric grid. Today we publish both Joe's paper and the recording of his presentation.

Read more
Categories: Data nyheter

VB2018 presentation: Levelling up: why sharing threat intelligence makes you more competitive

Fri, 03/01/2019 - 11:45
In a presentation at VB2018, Michael Daniel, President and CEO of the Cyber Threat Alliance, outlined exactly how threat sharing strengthens a company's competitive advantage. Today we release the recording of his presentation.

Read more
Categories: Data nyheter

The malspam security products miss: Emotet, Ursnif, and a spammer's blunder

Mon, 02/25/2019 - 10:22
The set-up of the VBSpam test lab gives us a unique insight into the kinds of emails that are more likely to bypass email filters. This week we look at the malspam that was missed: a very international email with a link serving Emotet, an Italian Ursnif campaign with a password-protected ZIP and an email to which a clumsy spammer had attached a list of email addresses rather than a payload.

Read more
Categories: Data nyheter

VB2018 paper: The modality of mortality in domain names

Fri, 02/22/2019 - 13:30
Domains play a crucial role in most cyber attacks, from the very advanced to the very mundane. Today, we publish a VB2018 paper by Paul Vixie (Farsight Security) who undertook the first systematic study into the lifetimes of newly registered domains.

Read more
Categories: Data nyheter

VB2018 paper: Analysing compiled binaries using logic

Wed, 02/20/2019 - 17:44
Constraint programming is a lesser-known technique that is becoming increasingly popular among malware analysts. In a paper presented at VB2018 Thaís Moreira Hamasaki presented an overview of the technique and explained how it can be applied to the analysis of (potentially) malicious binaries. Today, we publish both Thaís' paper and the video of her presentation.

Read more
Categories: Data nyheter

Virus Bulletin encourages experienced speakers and newcomers alike to submit proposals for VB2019

Tue, 02/19/2019 - 16:27
With a little less than a month before the deadline of the call for papers for VB2019, Virus Bulletin encourages submissions from experienced speakers and newcomers alike.

Read more
Categories: Data nyheter

VB2018 paper: Internet balkanization: why are we raising borders online?

Wed, 02/13/2019 - 11:38
At VB2018 in Montreal, Ixia researcher Stefan Tanase presented a thought-provoking paper on the current state of the Internet and the worrying tendency towards raising borders and restricting the flow of information. Today we publish both his paper and the recording of his presentation.

Read more
Categories: Data nyheter

The malspam security products miss: banking and email phishing, Emotet and Bushaloader

Mon, 02/11/2019 - 10:30
The set-up of the VBSpam test lab gives us a unique insight into the kinds of emails that are more likely to bypass email filters. This week we look at the malspam that was missed: banking and email phishing, Emotet and Bushaloader.

Read more
Categories: Data nyheter

VB2018 paper: Where have all the good hires gone?

Fri, 02/08/2019 - 11:06
The cybersecurity skills gap has been described as one of the biggest challenges facing IT leaders today. At VB2018 in Montreal, ESET's Lysa Myers outlined some of the things the industry can do to help address the problem. Today we publish Lysa's paper and the recording of her presentation.

Read more
Categories: Data nyheter

Preview: Nullcon 2019

Tue, 02/05/2019 - 12:46
We look forward the Nullcon 2019 conference in Goa, India, at which VB Editor Martijn Grooten will give a talk on the state of malware.

Read more
Categories: Data nyheter

From Amazon to Emotet: a look at those phishing and malware emails that bypassed email security products

Sun, 02/03/2019 - 17:53
We see a lot of spam in the VBSpam test lab, and we also see how well such emails are being blocked by email security products. Recently some of the emails that bypassed security products included a broken Amazon phishing campaign, a large fake UPS campaign and malicious emails carrying Emotet and Lokibot.

Read more
Categories: Data nyheter

VB2018 paper: Little Brother is watching – we know all your secrets!

Fri, 02/01/2019 - 12:32
At VB2018 in Montreal, researchers from Fraunhofer SIT looked at privacy vulnerabilities in legitimate Android family-tracking apps that leaked location data. Today, we publish both their paper and the video of their presentation.

Read more
Categories: Data nyheter

Threat intelligence teams should consider recruiting journalists

Tue, 01/29/2019 - 14:32
Threat intelligence teams would do well to recruit journalists, whose experience is crucial in today's threat landscape.

Read more
Categories: Data nyheter

Pages

KONTAKTA OSS

Tel: 0930-318 13

SMS: 076-815 18 06

email: nash@nashnet.nu

Custom Search