Notice

Virus Bulletin's blog

The latest Blog posts from the VB team
  1. NCSC gives important advice on lateral movement
    The UK's National Cyber Security Centre (NCSC) has provided helpful and practical advice on preventing and detecting lateral movement by an attacker within a network.

    Read more
  2. What kind of people attend Virus Bulletin conferences?
    If you are considering submitting a proposal for a talk to VB2018 and you're not familiar with the event, you may find it useful to know what kind of people attend the conference.

    Read more
  3. Olympic Games target of malware, again
    An unattributed malware attack has disrupted some computer systems of the 2018 Winter Olympics. In 1994, a computer virus also targeted the Winter Olympics.

    Read more
  4. There are lessons to be learned from government websites serving cryptocurrency miners
    Thousands of websites, including many sites of government organisations in the UK, the US and Sweden, were recently found to have been serving a cryptocurrency miner. More interesting than the incident itself, though, are the lessons that can be learned from it.

    Read more
  5. We need to continue the debate on the ethics and perils of publishing security research
    An article by security researcher Collin Anderson reopens the debate on whether publishing threat analyses is always in the public interest.

    Read more
  6. WordPress users urged to manually update to fix bug that prevents automatic updating
    Users of the popular WordPress content management system are urged to manually update their installation to version 4.9.4, as a bug in the previous version broke the ability to automatically install updates.

    Read more
  7. New paper: A review of the evolution of Andromeda over the years
    The Andromeda botnet (aka Gamarue or Wauchos) has plagued Internet users for more than half a decade but, following a takedown effort and the arrest of the suspected botnet owner in December 2017, it is likely we have seen the end of it. In a new paper by Fortinet researchers Bahare Sabouri and He Xu, we look back at the evolution of Andromeda from version 2.06 to 2.10 and demonstrate both how it improved its loader to evade automatic analysis/detection and how the payload varied among the different versions.

    Read more
  8. There is no evidence in-the-wild malware is using Meltdown or Spectre
    Reports of malware using the Meltdown or Spectre attacks are likely based on proof-of-concept code rather than files written for a malicious purpose.

    Read more
  9. Throwback Thursday: Malware taking a bit(coin) more than we bargained for
    This Throwback Thursday, we republish the VB2012 paper by Microsoft researcher Amir Fouda, one of the earliest papers to look at malware targeting Bitcoin.

    Read more
  10. First time speaker? Don't be afraid of submitting to the VB2018 CFP
    We especially encourage those less experienced in speaking in public to submit to the call for papers for VB2018, where we aim to provide a friendly and welcoming environment in which people can both present their own research and learn from what others have been working on.

    Read more