Virus Bulletin issue archive

The Bulletin is an indispensable source of reference for anyone concerned with the prevention, detection and removal of computer threats, including but not limited to malware and spam.

Between 1989 and 2014, VB published the monthly, subscriber-based Virus Bulletin magazine. The Bulletin is a continuation of that publication, but with more frequent releases - the Bulletin is available free of charge and requires no registration.

Virus Bulletin - June 2014

Share and share alike (comment); Wapomi (malware analysis); The curse of Necurs, part 3 (malware analysis); Sinowal banking trojan (malware analysis); Rogue Code (book review); Greetz from academe: Will research for food (spotlight); Fuzzing everything in 2014 for 0-day vulnerability discovery (feature); VB100 comparative review on Windows Server 2012 (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - May 2014

A grown-up industry (comment); Neurevt botnet: new generation (malware analysis); Anatomy of Turla exploits (malware analysis); The curse of Necurs, part 2 (malware analysis); On cyber investigations. Case study: a money transfer system robbery (feature); Greetz from academe: film at eleven (spotlight); May 2014 VBSpam comparative review (comparative review)

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - April 2014

Threat intelligence sharing: tying one hand behind our backs (comment); The shape of things to come (announcement); The curse of Necurs, part 1 (malware analysis); More fast of more dirty? (malware analysis); Tofsee botnet (malware analysis); Back to VBA (technical feature); Is the IT security industry up to the new challenges to come? (commentary); Greetz from academe: No place to Hyde (spotlight);

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - March 2014

Making the case for incident response (comment); A short visit with a virus (malware analysis); ProxyCB, a spam proxy under the radar (malware analysis); Solarbot botnet (malware analysis); Not Expir-ed yet (malware analysis); BYOT: Bring Your Own Target (technical feature); Greetz from academe: Censored (spotlight);

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - February 2014

It is time for defenders to go on the offence (comment); Getting one's hands dirty (malware analysis); Salted algorithm - part 2 (malware analysis); Inside W32.Xpaj.B's infection - part 2 (malware analysis); Needle in a haystack (feature); Don't forget to write (book review); Greetz from academe: Full frontal (spotlight);

view issue as HTML | PDF
view comparative as HTML | PDF

Virus Bulletin - January 2014

The AV industry in the post-Snowden era (comment); Medfos - an all-purpose redirector (malware analysis); Salted algorithm - part 1 (malware analysis); Inside W32.Xpaj.B's infection - part 1 (malware analysis); Greetz from academe: Ringing in the new (spotlight); SGX: the good, the bad, and the downright ugly (feature); Effusion - a new sophisticated injector for Nginx web servers (feature);

view issue as HTML | PDF
view comparative as HTML | PDF

 

Latest articles:

Nexus Android banking botnet – compromising C&C panels and dissecting mobile AppInjects

Aditya Sood & Rohit Bansal provide details of a security vulnerability in the Nexus Android botnet C&C panel that was exploited to compromise the C&C panel in order to gather threat intelligence, and present a model of mobile AppInjects.

Cryptojacking on the fly: TeamTNT using NVIDIA drivers to mine cryptocurrency

TeamTNT is known for attacking insecure and vulnerable Kubernetes deployments in order to infiltrate organizations’ dedicated environments and transform them into attack launchpads. In this article Aditya Sood presents a new module introduced by…

Collector-stealer: a Russian origin credential and information extractor

Collector-stealer, a piece of malware of Russian origin, is heavily used on the Internet to exfiltrate sensitive data from end-user systems and store it in its C&C panels. In this article, researchers Aditya K Sood and Rohit Chaturvedi present a 360…

Fighting Fire with Fire

In 1989, Joe Wells encountered his first virus: Jerusalem. He disassembled the virus, and from that moment onward, was intrigued by the properties of these small pieces of self-replicating code. Joe Wells was an expert on computer viruses, was partly…

Run your malicious VBA macros anywhere!

Kurt Natvig wanted to understand whether it’s possible to recompile VBA macros to another language, which could then easily be ‘run’ on any gateway, thus revealing a sample’s true nature in a safe manner. In this article he explains how he recompiled…

We have placed cookies on your device in order to improve the functionality of this site, as outlined in our cookies policy. However, you may delete and block all cookies from this site and your use of the site will be unaffected. By continuing to browse this site, you are agreeing to Virus Bulletin's use of data as outlined in our privacy policy.