Virus Bulletin issue archive

The Bulletin is an indispensable source of reference for anyone concerned with the prevention, detection and removal of computer threats, including but not limited to malware and spam.

Between 1989 and 2014, VB published the monthly, subscriber-based Virus Bulletin magazine. The Bulletin is a continuation of that publication, but with more frequent releases - the Bulletin is available free of charge and requires no registration.

Virus Bulletin - December 2011

All your lulz will belong to us (comment); Win32/Induc.C: getting noisier in the library (malware analysis); As above, Sobelow (malware analysis); Mobile botnets for smartphones: an unfolding catastrophe? (feature); Book Worm (book review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - November 2011

Within the margin of error (comment); Viva Barcelona! (conference report); Spitmo - SpyEye component for Symbian (malware analysis); Flibi: reloaded (malware analysis); Investigating the abuse of search engines to promote illicit online pharmacies (feature); The art of stealing banking information - form grabbing on fire (feature)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - October 2011

Why there's no one test to rule them all (comment); A new BIOS rootkit spreads in China (malware analysis); Hard disk woes (malware analysis); Asynchronous Harakiri++ (malware analysis); Okay, so you are a Win32 emulator... (technical feature);

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - September 2011

Should there be an AV industry code of ethics? (comment); 'Holey' virus, Batman! (malware analysis); Qakbot: a disaster waiting to happen (feature); Hearing a PIN drop (feature); Stux in a rut: why Stuxnet is boring (opinion);

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - August 2011

Google+, privacy and the human brain (comment); Frankie say relax (malware analysis); SpyEye bot - aggressive exploitation tactics (malware analysis); A new trend in exploitation (feature); IPv6 mail server whitelist declaring war on botnets (feature); Relock-based vulnerability in Windows 7 (feature)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - July 2011

Tumblr attacks - what to watch out for (comment); Toll fraud: SipPhreak (malware analysis); SpyEye malware infection framework (malware analysis); Reversing Python objects (technical feature); Not so random (feature)

view issue as HTML | PDF
view comparative as HTML | PDF (Updated!)

Virus Bulletin - June 2011

Education, education, education (comment); Digging through the problem of IPv6 and email (feature); A browser malware taxonomy (feature); New targeted attack via Google Images (feature); EICAR 2011: A 20th anniversary in Austria (conference report)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - May 2011

A 'defence triangle' (comment); Putting Trojan.Hashish out to grass (malware analysis); Flibi: evolution (technical feature); Zero Day: a novel (book review); Agnitum Outpost Security Suite Free (product review); VBSpam comparative - May 2011 (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - April 2011

IE 6 - 5 - 4 - 3 - 2 - 1 (comment); Defeating mTANs for profit - part two (technical feature); Hiding in plain sight (technical feature); Phighting cybercrime together (conference report); RSA 2011 conference review (conference report); Sender authentication - practical implementations (feature); VB100 comparative review on Windows XP SP3 (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - March 2011

What next for rogue AVs? (comment); Flibi night (malware analysis); Defeating mTANs for profit - part one (technical feature); Canada's new anti-spam law (feature); A nice drop of Cocoa (book review); VBSpam comparative review March 2011 (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - February 2011

How much malware is really out there? (comment); $$$_+$$+$$__+_$+$$_$+$$$_+$$_$ (malware analysis); DLL hijacking (technical feature); Introduction to hostile Java analysis (tutorial); The top 10 spam, malware and cybersecurity stories of 2010 (feature); VB100 comparative review on Ubuntu Linux (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - January 2011

How do we make bigger better? (comment); Carberp, a new bag of tricks (malware analysis); What's the deal with sender authentication? Part 6 (feature); Transitions: welcome to the new old world (opinion); 'Hello, I'm from Windows and I'm here to help you' (anecdote); eScan Internet Security 11 (product review); VBSpam comparative review January 2011 (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

 

Latest articles:

Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

Aditya Sood & Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited to compromise the C&C panel in order to gather threat intelligence, and present a model of mobile AppInjects.

Cryptojacking on the fly: TeamTNT using NVIDIA drivers to mine cryptocurrency

TeamTNT is known for attacking insecure and vulnerable Kubernetes deployments in order to infiltrate organizations’ dedicated environments and transform them into attack launchpads. In this article Aditya Sood presents a new module introduced by…

Collector-stealer: a Russian origin credential and information extractor

Collector-stealer, a piece of malware of Russian origin, is heavily used on the Internet to exfiltrate sensitive data from end-user systems and store it in its C&C panels. In this article, researchers Aditya K Sood and Rohit Chaturvedi present a 360…

Fighting Fire with Fire

In 1989, Joe Wells encountered his first virus: Jerusalem. He disassembled the virus, and from that moment onward, was intrigued by the properties of these small pieces of self-replicating code. Joe Wells was an expert on computer viruses, was partly…

Run your malicious VBA macros anywhere!

Kurt Natvig wanted to understand whether it’s possible to recompile VBA macros to another language, which could then easily be ‘run’ on any gateway, thus revealing a sample’s true nature in a safe manner. In this article he explains how he recompiled…

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.