Fighting malware and spam
2010-08-01
Abstract
Apple pie order? (comment); Anti-unpacker tricks - part eleven (technical feature); Advanced exploit framework lab set-up (tutorial) HTML structure-based proactive phishing detection (feature); What's the deal with sender authentication? Part 3 (feature); VB100 - Windows Vista Business Edition Service Pack 2 (comparative review)
Comment
Apple pie order?
‘Over 40% [of computer users] think [that Macs are] only “somewhat” vulnerable.’ David Harley, ESET
News
VB2010 call for last-minute papers
Call for proposals for presentations dealing with up-to-the-minute specialist topics.
VB Seminar
VB unveils one-day seminar in central London, November 2010.
All change
Yet another flurry of security acquisitions.
Malware prevalence report
June 2010
The Virus Bulletin prevalence table is compiled monthly from virus reports received by Virus Bulletin; both directly, and from other companies who pass on their statistics.
Technical feature
Anti-unpacker tricks – part eleven
Last year, a series of articles described some tricks that might become common in the future, along with some countermeasures. Now, the series continues with a look at tricks that are specific to debuggers and emulators.
Tutorial
Advanced exploit framework lab set-up
Any researcher serious about regularly researching exploit frameworks needs a special lab set-up to work with the PHP, MySQL and web server components commonly found in such kits. Mark Davis documents how to create LAMP and WAMP servers and how to approach the study of such threats in a local lab.
Features
HTML structure-based proactive phishing detection
Marius Tibeica describes a solution for protection at browser level by providing an automated method of detecting phishing based on the tag structure of the HTML.
What’s the deal with sender authentication? Part 3
Sender authentication is a hot topic in the world of email. It has a number of uses and a number of suggested uses. Which ones work in real life? Which ones don’t quite measure up? Can we use authentication to mitigate spoofing? Can we use it to guarantee authenticity? And how do we authenticate email, anyway? Terry Zink provides the answers to these questions and more, this month focusing on SenderID.
Comparative review
VB100 – Windows Vista Business Edition Service Pack 2
With another epic haul of 54 products to test this month, the VB test team could have done without the bad behaviour of a number of products: terrible product design, lack of accountability for activities, blatant false alarms in major software, numerous problems detecting the WildList set, and some horrendous instability under pressure. Happily, there were also some good performances to balance things out. John Hawes has the details.
Calendar
Anti-malware industry events
Must-attend events in the anti-malware industry - dates, locations and further details.
 |
Magazine |  |
 |
Quick Links |  |
| ||||||||||
|
Poll | |
| ||||||
|
VB100 certification | |
| ||||||
This month's VB100 test saw some major changes and a radical overhaul of the VB100 test methodology - for the first time allowing products to use their 'cloud' look-up systems. John Hawes has all the details.
Virus Bulletin currently has 224,238 registered users.