Category: blog
-
Throwback Thursday: We’re all doomed
When a daily sports paper compares a national soccer crisis with the spread of an Internet worm, you know that the worm has had an enormous impact on everyday life. This was the case with W32/Mydoom when it first made an appearance in early 2004. Incredibly, despite its advanced years, Mydoom is still showing up…
-
VB2019 call for papers – now open!
The call for papers for VB2019 , the 29th Virus Bulletin International Conference, which will take place in London, UK, 2-4 October 2019, is now open! We welcome submissions on all aspects of digital security, from the very technical to the more general, whether you are an experienced speaker or a first-time presenter, and whether…
-
VB2019 call for papers – now open!
The call for papers for VB2019 , the 29th Virus Bulletin International Conference, which will take place in London, UK, 2-4 October 2019, is now open! We welcome submissions on all aspects of digital security, from the very technical to the more general, whether you are an experienced speaker or a first-time presenter, and whether…
-
VB2018 paper: Unpacking the packed unpacker: reversing an Android anti-analysis library
Though still relatively new (the first VB conference paper on Android malware was presented in 2011), malware targeting the Android mobile operating system has evolved quickly, in terms of both quantity and quality. Many of the characteristics of desktop malware are now also seen in Android malware – for example, the use of anti-analysis techniques, and…
-
VB2018 paper: Unpacking the packed unpacker: reversing an Android anti-analysis library
Though still relatively new (the first VB conference paper on Android malware was presented in 2011), malware targeting the Android mobile operating system has evolved quickly, in terms of both quantity and quality. Many of the characteristics of desktop malware are now also seen in Android malware – for example, the use of anti-analysis techniques, and…
-
VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors
IT security research stumbled into the world of nation-state intelligence operations more or less by accident. In a now classic VB2015 paper , Juan Andres Guerrero-Saade discussed this shift from security research to intelligence brokerage and what this implied. Juan Andres has been a regular speaker at the VB conference since then, and has given…
-
VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors
IT security research stumbled into the world of nation-state intelligence operations more or less by accident. In a now classic VB2015 paper , Juan Andres Guerrero-Saade discussed this shift from security research to intelligence brokerage and what this implied. Juan Andres has been a regular speaker at the VB conference since then, and has given…
-
Book Review: Cyber Wars
At a recent security conference, one speaker asked how many of the audience remembered the 2007 Storm Worm . Only about half the members of the audience of malware researchers raised their hand. Infosec isn’t very good at institutional memory and the vast amount of new information that deluges those working in the industry often…
-
Book Review: Cyber Wars
At a recent security conference, one speaker asked how many of the audience remembered the 2007 Storm Worm . Only about half the members of the audience of malware researchers raised their hand. Infosec isn’t very good at institutional memory and the vast amount of new information that deluges those working in the industry often…
-
VB2018 paper: Office bugs on the rise
A large portion of today’s malware infections use malicious Office documents as a first-stage payload. Typically, the user is tricked into enabling macros or disabling some security protection, after which the next-stage payload is downloaded and executed. However, a different kind of Office malware targets outdated versions of Microsoft Office , which continue to be…