VB2015 video: The Fault in our Stars

Kurt Baumgartner talks about Turla's extraplanetary activities.

Despite the hype around the subject, the tools used by most so-called APT groups are surprisingly mundane. But there are exceptions.

In September 2015, researchers at Kaspersky Lab published research on the Turla APT group (also known as Uroburos or Snake), which hijacked satellite Internet links for command and control communication. At the cost of a slow and unstable connection,


Security vendors should embrace those hunting bugs in their products

Security software is software too — and it will have flaws.

Last week, I was interviewed for the Risky Business podcast. I really enjoyed the experience, not just because I've long been a fan of the show, but also because we discussed a subject I really care about: the security of security products.

If you follow the security news, you will have noticed that several researchers (with Google's Tavis Ormandy most prominent among them) are currently hunting for vulnerabilities in anti-virus and other security products. After disclosing the vulnerabilities to the relevant vendors in a responsible manner, they write about their findings on Twitter and on various blogs.


More VB Conference papers and videos published

11 papers and 9 videos added to our website.

In the security industry, we're used to people saying sorry: "sorry we chose a default password of 12345678"; "sorry we didn't look after your personal data better"; "sorry we didn't discover this huge vulnerability earlier"; and so on.

In that context, my reason for apologising is far more mundane. There were some great papers and presentations given at our VB2014 conference in Seattle that we simply haven't yet got around to publishing.


Throwback Thursday: Peter-II - Three Questions of The Sphinx

This Throwback Thursday, VB heads back to 1993, when an ordinary memory-resident master boot sector virus spiced things up with a bit of pop trivia.

Over recent years we have become used to hearing about ransomware extorting money from victims by locking up their devices and demanding a ransom in order for access to the device to be restored. Back in 1993, however, before malware had truly become linked with monetary gain, there was a device hold-up of a different kind: know your pop trivia or face losing your data.



Fifteen full solutions and three DNS-based blacklists lined up on the test bench for this VBSpam test and all but one of the full solutions reached the performance level required to earn a VBSpam award. More impressively, eight of them achieved a VBSpam+ award. | Read more...


This month VB lab team put 14 business products and 30 consumer products to the test on Windows 8.1 Pro. The VB100 pass rate was decent, although not quite up to the perfect or near-perfect fields seen in a few recent tests. | Read more...

Date Event Location
Feb 15 - 18 M3AAWG 36th General Meeting San Francisco, CA, USA
Mar 14 - 18 TROOPERS16 Heidelberg, Germany
Mar 16 - 18 CanSecWest Vancouver, BC, Canada
June 09 Copenhagen Cybercrime Conference 2016 Copenhagen, Denmark
Oct 05 - 07 VB2016 Denver, CO, USA

VB Conference

VB2016 Denver, 5-7 Oct 2016: Covering the global threat landscape
The VB conference is a major highlight of the security calendar, with many of its regular attendees citing it as the IT security event of the year. VB2016 will take place in Denver, Colorado, USA.

Previous VB conference delegates said:

‘I would like to thank you for hosting such an educational, informative, and entertaining conference.’


virusbtn:Fitness trackers aren't very good at keeping you private Which we already knew
Mon Feb 08 16:10:17

virusbtn:Google's Safe Browsing is taking on deceptive download buttons
Mon Feb 08 15:36:21

virusbtn:A flaw in eBay could lead to malware being distributed. But the company doesn't think it should fix it
Mon Feb 08 15:06:05

virusbtn:The Dridex botnet has been serving Avira anti-virus. And the company doesn't know why either
Mon Feb 08 14:32:14

Jobs Career Sidebar