Semantic search

This page or action requires Javascript to work, please enable Javascript in your browser or use a browser where this is supported so that functionality can be served and is provided as requested. For further assistance, please have a look at the noscript help page.

Search Clear all entries

	Author	Editor	Botnet
CVE-2012-4681 - On its way to Sakura Exploit Kit too	Kafeine
CVE-2012-4681 - Redkit Exploit Kit - I want Porche Turbo	Kafeine
CVE-2012-4681 - Связка Sweet Orange	Kafeine
CVE-2012-5076 - Massively adopted - Blackhole update to 2.0.1	Kafeine
Carberp gang evolution: CARO 2012 presentation	Aleksandr Matrosov	ESET	Carberp
Carberp steals e-cash vouchers from Facebook users	Amit Klein	Trusteer	Carberp
Carberp, the renaissance ?	Kafeine		Carberp
Carberp-in-the-Mobile	Denis Maslennikov	Kaspersky lab	Carberp
Carberp: it’s not over yet	Vyacheslav Zakorzhevsky	Kaspersky lab	Carberp
Case study of the Miner botnet	Daniel Plohmann Elmar Gerhards-Padilla	4th International Conference on Cyber Con ict
China targets macs used by NGOs		F-Secure	Ghostnet
Citadel : le fichier de configuration	Fabien Perigaud	LEXSI	Citadel
Citadel V1.3.5.1: enter the fort’s dungeons	Limor Kessem	RSA	Citadel
Citadel ZeuS bot	Sherb1n	Cyber Sleuth
Citadel trojan malware analysis	Jason Milletary	DELL SecureWorks	Citadel
Citadel trojan touts trouble-ticket system	Brian Krebs	Brian Krebs	Citadel
Citadel: a cyber-criminal’s ultimate weapon?	Jérôme Segura	Malwarebytes	Citadel
Confidential documents from Japanese politics stolen by malware	Pierluigi Paganini	Security Affairs
Cool EK : "Hello my friend..." CVE-2012-5076	Kafeine
Cool Exploit Kit - A new Browser Exploit Pack on the Battlefield with a "Duqu" like font drop	Kafeine
Cool exploit kit - URL structure		Fort Knox Networks
Covert channels over social networks	Jose Selvi	SANS Institute
Cracking the encrypted C&C protocol of the ZeroAccess botnet	John Morris	Virus Bulletin	ZeroAccess
Crisis for Windows sneaks onto virtual machines	Takashi Katsuki	Symantec	Crisis
Crypto breakthrough shows Flame was designed by world-class scientists	Dan Goodin		Flame
Crypto experts called on to crack cyberspy tool's encryption	Kelly Jackson Higgins	UBM	Gauss
Cutwail drives spike in malicious HTML attachment spam	Rodel Mendrez	M86 Security Labs	Cutwail
Cyber gang seeks botmasters to wage massive wave of trojan attacks against U.S. banks	Mor Ahuvia	RSA	Prinimalka
DDoS attacks: the Zemra bot	Alan Neville	Symantec	Zemra
DISCLOSURE: detecting botnet command and control servers through large-scale NetFlow analysis	Christopher Kruegel Leyla Bilge Davide Balzarotti William Robertson Engin Kirda	ACSAC
DNS: a botnet dialect	Francisco J. Gómez Rodríguez Carlos Díaz Hidalgo	Iniqua	Morto Feederbot
DaRK DDoSseR leads to Gh0st RAT	Nart Villeneuve	Trend Micro	DaRK DDoSseR Gh0st RAT
DarkMegi rootkit - sample (distributed via Blackhole)	Mila Parkour	Contagio	DarkMegi
Darkmegi: this is not the Rootkit you’re looking for	Craig Schmugar	McAfee
De code van Dorifel nader bekeken	Brenno de Winter	IDG	Dorifel
Digging inside Tinba malware - A walkthrough	Aditya K Sood	SecNiche	Tinba
Digging into the Nitol DDoS botnet	Itai Liba	McAfee	Nitol
Dirt Jumper DDoS bot increasingly popular	Jose Nazario	Arbor Sert	Dirt Jumper
Disttrack malware overwrites files, infects MBR	Cris Pantanilla	Trend Micro	DistTrack
Disttrack sabotage malware wipes data at unnamed Middle East energy organization	Fahmida Y. Rashid	Wired Business Media	DistTrack
Doctor Web a détecté un botnet enrôlant plus de 550 000 Mac		Doctor Web	Flashback
Doctor Web exposes 550 000 strong Mac botnet		Doctor Web	Flashback
Domain generation algorithms (DGA) in stealthy malware	Gunter Ollmann	Damballa	Conficker
Dorifel crypto malware paralyzes Dutch companies and public sector		Emsisoft	Citadel Dorifel
Dorifel is much bigger than expected and it’s still active and growing!	David Jacoby	Kaspersky lab	Dorifel
Dorifel virus gereed voor Nederlandse banking phishing	Huub Roem	Digital Investigation	Dorifel
Dorifel/Quervar: the support scammer’s secret weapon	David Harley	ESET	Dorifel
Dorkbot: conquistando Latinoamérica	Pablo Ramos	ESET	Dorkbot
Dutch users served Sinowal for lunch	Roland Dela Paz	TrendMicro	Sinowal
EURO Winlocker	Xylitol	Xylitol	LockScreen.CI
Emerging attack vectors - RSA slide deck	Ed Skoudis
Etude sur le fonctionnement du Trojan.Matsnu.1 codant les données des utilisateurs		Dr.Web	Rannoh
Exploring the market for stolen passwords	Brian Krebs	Brian Krebs	Andromeda Citadel
FAQ on Kelihos.B/Hlux.B sinkholing	David Dittrich	The Honeynet Project	Kelihos
Fake FBI Ransomware analysis	Hynek Blinka	AVG	Reveton
Fast look at an infection by a Blackhole Exploit Kit 2.0	Kafeine
Festi botnet analysis & investigation	Aleksandr Matrosov Eugene Rodionov	ESET	Festi
Flame, Duqu and Stuxnet: in-depth code analysis of mssecmgr.ocx	Aleksandr Matrosov Eugene Rodionov	ESET	Duqu Flame Stuxnet
Flame: replication via Windows Update MITM proxy	Aleks	Kaspersky lab	Flame
Flamer analysis: framework reconstruction	Aleksandr Matrosov Eugene Rodionov	ESET	Flame
Flamer: highly sophisticated and discreet threat targets the Middle East		Symantec	Flame
Flamer: urgent suicide		Symantec	Flame
Flashfake Mac OS X botnet confirmed	Igor Soumenkov	Kaspersky lab	Flashback
Fortiguard: Android/Stiniter.A!tr		Fortinet
From Georgia, with love Win32/Georbot		ESET
From Sakura to Reveton via Smoke Bot - or a botnet distribution of Reveton	Kafeine		Smoke Bot Reveton
Full analysis of Flame's Command & Control servers	GReAT	Kaspersky lab	Flame
Full analysis of Flame's command & control servers	GReAT	Kaspersky lab	Flame
Gangstaservice Winlock Affiliate	Xylitol	Xylibox	Casier
Gauss: Nation-state cyber-surveillance meets banking Trojan	GReAT	Kaspersky lab	Flame Gauss Stuxnet
Gauss: abnormal distribution	GReAT	Kaspersky lab	Gauss
Get gamed and rue the day...	Methusela Cebrian Ferrer	Microsoft	Andromeda
Getting more "personal" & deeper into Cridex with parfeit credential stealer infection	Hendrik Adrian		Cridex
Gimemo finally targeting USA with Camera Feature too	Kafeine		Gimemo
Gimemo wants to play in the big league	Kafeine		Gimemo
Guys behind Gauss and Flame are the same	Ali Islam	FireEye	Flame Gauss
Harvesting data on the Xarvester botmaster	Brian Krebs	Brian Krebs	Srizbi Xarvester
HerpesNet botnet 1.7	Lycroft Eugenia	Toolzware	HerpesNet
IRC bot for Android	Denis Maslennikov	Kaspersky lab
Industrial espionage and targeted attacks: understanding the characteristics of an escalating threat	Olivier Thonnard Gavin O’Gorman Leyla Bilge Seán Kiernan Martin Lee	RAID 2012	Nitro Sykipot Taidoor Stuxnet Hydraq
Inside Andromeda Bot v2.06 Webpanel / AKA Gamarue - Botnet Control Panel	Kafeine		Andromeda
Inside Blackhole Exploits Kit v1.2.4 - Exploit Kit Control Panel	Kafeine
Inside Citadel 1.3.4.5 C&C & Builder - Botnet Control Panel	Kafeine		Citadel
Inside Impact exploit kit	Kafeine	Kafeine
Inside Pony 1.7 / Fareit C&C - Botnet Control Panel	Kafeine	Malware don't need cofee	Pony
Inside Smoke Bot - Botnet Control Panel	Kafeine		Smoke Bot
Inside Smoke Bot - botnet control panel	Kafeine		Smoke Bot
Inside Ulocker	Xylitol		ULocker
Inside Upas Kit (1.0.1.1) aka Rombrast C&C - Botnet Control Panel	Kafeine	Blogspot	Upas
Inside an APT campaign with multiple targets in India and Japan		Trend Micro
Inside the Grum botnet	Brian Krebs	Brian Krebs	Grum
Inside view of Lyposit aka (for its friends) Lucky LOCKER	Kafeine		Lyposit
Insights into Win32/Bradop		Microsoft	Bradop
Interconnection of Gauss with Stuxnet, Duqu & Flame	Eugene Rodionov	ESET	Duqu Flame Gauss Stuxnet
Introducing Ponmocup-Finder	Tom U		Ponmocup
It’s 2012 and Armageddon has arrived	Jeff Edwards	Arbor SERT
It’s not the end of the world: DarkComet misses by a mile	Jeff Edwards	Arbor Networks	DarkComet
Java Runtime Environment 1.7 Zero-Day Exploit Delivers Backdoor	Manuel Gatbunton	Trend Labs
Java Zero-Days and the Blackhole Exploit Kit	Jon Oliver	Trend Micro
Joint strike force against Dorifel		SurfRight	Dorifel
Karagny.L unpack	RootBSD	Malware.lu	Casier
Kaspersky Lab et Seculert annoncent la récente découverte de « Madi », une nouvelle attaque de cyberespionnage au Moyen‑Orient	Kaspersky Lab	Global Security Mag	Madi
Kelihos back in town using Fast Flux		Abuse.ch	Kelihos Waledac
Kelihos is dead. Long live Kelihos	Gunter Ollmann	Damballa	Kelihos
Kelihos/Hlux botnet returns with new techniques	Maria Garnaeva	Kaspersky lab	Kelihos
Kelihos: not alien resurrection, more attack of the clones	David Harley	ESET	Kelihos Storm Waledac
King of spam:Festi botnet analysis	Aleksandr Matrosov Eugene Rodionov	ESET	Festi
Koobface botnet master KrotReal back in business, distributes ransomware and promotes BHSEO service/product	Dancho Danchev	Dancho Danchev	Koobface
Large-scale analysis of malware downloaders	Christian Rossow Christian Dietrich Herbert Bosz	DIMVA	Andromeda Donbot Gameover Sality Virut Renos Winwebsec Gbot Dofoil Karagany Emit GoldInstall Rodecap Harnig Dabvegi Zwangi Dldr-#2 Dldr-#1 Dldr-#3 TDSS Beebone
Latest SpyEye botnet active and cheaper	Umesh Wanve	McAfee	SpyEye
Learning stateful models for network honeypots	Konrad Rieck Tammo Krueger Hugo Gascon Nicole Krämer	ACM
Legal implications of countering botnets	Liis Vihul Christian Czosseck Katharina Ziolkowski Lauri Aasmann Ivo A. Ivanov Sebastian Brüggemann	NATO Cooperative Cyber Defence Centre of Excellence
Library file in certain Android apps connects to C&C servers	Weichao Sun	Trend Micro
Long life to Kelihos!	Gianluca Giuliani	Websense	Kelihos
MP-DDoser: A rapidly improving DDoS threat	Jeff Edwards	Arbor Sert	MP-DDoser
MP-DDoser:Monitoring a rapidly improving DDoS threat	Jeff Edwards	Arbor Sert	MP-DDoser
MSRT April 2012: Win32/Claretore	Tim Liu	Microsoft
MSRT June '12 - cleanup on aisle one		Microsoft	Kuluoz
MSRT March 2012: breaking bad	Rex Plantado	Microsoft	Dorkbot
MSRT November '12 - Weelsof around the world	Patrick Estavillo	Microsoft	Weelsof
MSRT September '12 - Medfos, hijacking your daily search	Shawn Wang	Microsoft	Medfos
MSRT march: three hioles in one	Shawn Wang	Microsoft	Andromeda
Mac BackDoor.Wirenet.1 config extractor	RootBSD Malware.lu	Malware.lu	Wirenet
Mac Flashback exploiting unpatched Java vulnerability	Brod	F-Secure	Flashback
Madi is back - New Tricks and a new Command&Control server	Nicolas Brulez	Kaspersky lab	Madi
Mahdi malware finds 150 new targets including U.S. and Germany, gets more evasive	Mike Lennon	Wired Business Media	Madi
Major shift in strategy for ZeroAccess rootkit malware, as it shifts to user-mode	James Wyke	Sophos Labs	ZeroAccess
Malicious Apache module injects Iframes	Denis Sinegubko	Unmask Parasites
Malicious Apache module used for content injection: Linux/Chapro.A	Pierre-Marc Bureau	ESET
Malware 2 - from infection to persistence	Mark Nicholls	Context	Carberp
Malware Memory Analysis - Volatility	Basement Tech	Basement PC Tech
Malware Uses Google Go Language	Flora Liu	Symantec	Encriyoko
Malware analysis Rannoh/Matsnu	Paul Rascagnères Hugo Caron	Malware.lu	Rannoh
Malware analysis tutorial 32: exploration of botnet client	Dr. Xiang Fu	Dr. Xiang Fu
Malware attacking POS systems	Adam Blaszczyk	Hexacorn	Dexter
Malware discovered developed with Google's "Go" programming language	Steve Ragan	Wired Business Media	Encriyoko
Malware hunting with the Sysinternals tools	Mark Russinovich	MSDN	Stuxnet
Malware targeting Windows 8 uses Google Docs	Takashi Katsuki	Symantec	Makadocs
McAfee Labs threat advisory : W32.Pinkslipbot		McAfee	Akbot
Measuring botnet populations	Jose Nazario	Arbor Sert	Conficker Miner
Meet CritXPack (Previously Vintage Pack)	Kafeine	Kafeine
Meet ProPack Exploit Pack - yes that's a lot of pack	Kafeine	Blogspot	Lyposit
Meet ‘Flame’, the massive spy malware infiltrating Iranian computers	Kim Zetter		Flame
Members of the largest criminal group engaged in online banking fraud are detained		Group-IB	Carberp
Microsoft and financial services industry leaders target cybercriminal operations from ZeuS botnets	Richard Domingues Boscovich	Microsoft	SpyEye ZeuS Ice-IX
Microsoft disrupts the emerging Nitol botnet being spread through an unsecure supply chain	Richard Domingues Boscovich	Microsoft	Nitol
MoVP 1.3 Desktops, heaps, and ransomware	Michael Hale Ligh	Volatility labs	Accdfisa Tigger
Monkif botnet hides commands in JPEGs	Vikas Taneja	McAfee Labs	Monkif
More Flame/Skywiper CNC behavior uncovered	Ali Islam	FireEye	Flame
More details of the Dorifel servers	Rickey Gevers	Rickey Gevers	Dorifel
Multitenancy Botnets thwart threat analysis	Martin	Open-Source Security Tools
NGRBot spreads via chat	Niranjan Jayanand	McAfee	Dorkbot
Necurs Quick Analysis	RootBSD	Malware.lu	Necurs
Neosploit gets Java 0-Day	Darryl	Kahu Security
Nepalese government websites compromised to serve Zegost RAT	Gianluca Giuliani Elad Sharf	Websense	Zegost
New Apple Mac trojan called OSX/Crisis discovered	Lysa Myers	Intego	Crisis
New Chinese exploit pack	Darryl	Kahu security blog
New Duqu sample found in the wild		Symantec	Duqu
New Mahdi updates, new C2 server	Seculert	Seculert	Mahdi
New Thor botnet nearly ready to be sold, price $8,000		SPAMfighter	Thor
New Xtreme RAT attacks US, Israel, and other foreign governments	Nart Villeneuve	Trend Micro	Xtreme RAT
New ransomware plays its victims an audio file, over and over and over…	Elizabeth Bookman	Trend Micro	Jagfu
New trojan found: Admin.HLP leaks organizations data	Eyal Benishti	ERT Threat Alert	Admin.HLP
New virus SMSZombie.A discovered by TrustGo Security Labs		TrustGo	SMSZombie
Newly detected Crisis virus infects Windows, Macs and virtual machines	Robert Lemos	Ziff Davis	Crisis
Nitol DDoS botnet discovered in China	Anonyme	Reed Exhibitions	Nitol
Not just a one-trick PonyDOS	Jeff Edwards	Arbor SERT
Now you Z-(eus) it, now you don’t: ZeuS bots silently upgraded to Citadel		RSA	Citadel ZeuS
Nuevo botnet contra Mexico: Karn!v0r3x	Jose Dos Santos Torrijos		Karn!v0r3x
OSX/Crisis has been used as part of a targeted attack	Lysa Myers	Intego	Crisis
OSX/Flashback - The first malware to infect hundreds of thousands of Apple Mac	Pierre-Marc Bureau	ESET	Flashback
Obama order sped up wave of cyberattacks against Iran	David E. Sanger	The New York Times	Stuxnet
Olmasco bootkit: next circle of TDL4 evolution (or not)	Aleksandr Matrosov	Eset	TDL-4 TDSS
One bot to rule them all		Panda Security	Ainslot
Over 9 million PCs infected - ZeroAccess botnet uncovered	James Wyke	Sophos Labs	ZeroAccess
P2P botnet Kelihos.B with 100.000 nodes sinkholed	Tillmann Werner		Kelihos
Panda Security uncovers bot-killing malware	Brian Prince	Wired Business Media	Ainslot DarkComet ZeuS TDL-3 ZeroAccess
Panel Gendarmerie	Malekal Morte	Malekal	Epubb
Panel Supern0va et virus gendarmerie	Malekal Morte	Malekal Morte	Supern0va
Panel Virus Gendarmerie : Ratio 0.36%	Malekal Morte	Malekal	Undefined-10
Part virus, part botnet, spreading fast: Ramnit moves past Facebook passwords	Sean Gallagher	Arstechnica
Playing cops & robbers with banks & browsers	Fred Gutierrez	Symantec	ZeuS
PlugX: new tool for a not so new campaign	Roland Dela Paz	Trend Micro	PlugX
Police Trojan crosses the Atlantic, now targets USA and Canada	David Sancho	TrendMicro	Goldenbaks Silent Winlocker
Ponmocup analysis	Tom U		Ponmocup
Pramro and Sality - two PEs in a pod	Scott Molenkamp	Microsoft	Pramro Sality
Proactive detection of security incidents II - Honeypots	CERT Polska	Enisa
Proactive policy measures by Internet service providers against Botnets		OECD
Probing the Gozi-Prinimalka campaign	Ivan Macalintal	Trend Micro	Gozi Prinimalka
Quervar – Induc.C reincarnate	Robert Lipovsky	Eset	Dorifel
QuickPost: Flame & Volatility	Michael Hale Ligh		Flame
Ramnit goes social		Seculert	Ramnit
Ransom.II - UGC payment for USA - Windows Genuine impersonation for DE	Kafeine		Ransom.II
Ransomware : Smile you're on camera - Reveton.C new landing pages	Kafeine		Reveton
Ransomware Casier - Sharing Design with Lyposit - Gaelic & Persian (	Kafeine		Lyposit Casier
Ransomware Fake Microsoft Security Essentials	Malekal Morte	Malekal Morte	Ransom.JU
Ransomware and Silence Locker control panel	Peter Coogan	Symantec	Silence Locker
Ransomware crimeware kits	Peter Coogan	Symantec	Silence Locker
Ransomware gets professional, targeting Switzerland, Germany and Austria		Abuse.ch	Gimemo
Ransomware « Trojan.Casier » Panel	Malekal morte	Malekal	Casier
Ransomware ‘Holds Up’ victims	Sravan Ganachari	McAfee	Rannoh
Ransomware: playing on your fears	Raymond Roberts	Microsoft	Gema
Redkit - one account = one color	Kafeine
Redkit : No more money ! Traffic US, CA, GB, AU	Kafeine
Relentless Zbot and anti-emulations	Anoirel Issa	Symantec	ZeuS
Reversing malware loaders - The Matsnu-A Case	Kyriakos Economou		Rannoh
Reversing the wrath of Khan	Jeff Edwards	Arbor SERT	Khan
Reveton += HU, LV, SK, SI, TR (!), RO - So spreading accross Europe with 6 new Design	Kafeine		Reveton
Reveton Autumn Collection += AU,CZ, IE, NO & 17 new design	Kafeine		Reveton
Reveton can speak now !	Kafeine		Reveton
Reveton.A		Microsoft	Reveton
Richard Clarke on who was behind the Stuxnet attack	Ron Rosenbaum	Smithsonian	Stuxnet
Rmnet.12 created a million Windows computer botnet		DrWeb	Ramnit
RootSmart Android malware	Quequero	InfoSec Institute
RootSmart malware utilizes GingerBreak root exploit	Xuxian Jiang	CS State University
Rovnix Reloaded: new step of evolution	David Harley Aleksandr Matrosov Eugene Rodionov	ESET	Carberp
Rovnix bootkit framework updated	Aleksandr Matrosov	ESET	Rovnix
Rovnix.D: the code injection story	Aleksandr Matrosov	ESET	Rovnix
SIM-ple: mobile handsets are weak link in latest online banking fraud scheme	Amit Klein	Trusteer	SpyEye ZeuS Gozi
SIRv12	Joe Faulhaber David Felstead Paul Henry Jeff Jones Jimmy Kuo Marc Lauricella Dave Probert Tim Rains Frank Simorjay Holly Stewart Matt Thomlinson Scott Wu Terry Zink Dennis Batchelder Shah Bawany Joe Blackbird Eve Blakemore Sarmad Fayyaz Nitin Kumar Goel Ken Malcolmson Nam Ng Mark Oram Daryl Pecelj	Microsoft	SpyEye Bamital Conficker ZeuS Ponmocup Sality Ramnit Waledac FakeRean FakeSpypro Stuxnet Pamesag DorkBot Frethog Parite Taterf Zwangi Butterfly OpenCandy Rugo ShopperReports HotBar CliclPotato Rorpian Helompy Pornpop Tracur
SIRv12: the obstinacy of Conficker	Joe Blackbird	Microsoft Malware Protection Centre	Conficker
SKyWIper: A complex malware for targeted attacks	SKyWIper Analysis Team Budapest University of Technology and Economics	CrySyS Lab	Flame
Saudi Aramco hit by computer virus	Charles Arthur	Guardian News and Media Limited	DistTrack
Say hello to Tinba: world’s smallest trojan-banker	Peter Kruse	CSIS
Scareware locks down computer due to child porn and terrorism		Abuse.ch	Goldenbaks
Security Response Android.Counterclank	Nino Gutierrez Asuka Yamamoto	Symantec
Security alert: SpamSoldier	Derek Halliday	Lookout	SpamSoldier
Security alert: new Android malware - TigerBot - identified in alternative markets		NQ Mobile
Security alert: new TGLoader Android malware utilizes the exploid root exploit	Xuxian Jiang	NC State University
Security alert: new variants of Legacy Native (LeNa) identified	Tim Wyatt	Lookout
Shamoon the Wiper in details	Dmitry Tarakanov	Kaspersky lab	Shamoon
Shamoon the Wiper: further details (Part II)	Dmitry Tarakanov	Kaspersky lab	Shamoon
Shamoon the wiper - copycats at work	GReAT	Kaspersky lab	Shamoon EraseMBR
Shylock financial malware back 'with a vengeance'	Taylor Armerding	CSO Online	Shylock
Sinowal analysis (Windows 7, 32-bit)	Evild3ad	Evild3ad.com	Torpig
Sinowal: MBR rootkit never dies! (and it always brings some new clever features)	Andrea Allievi	ITsec	Torpig
Skynet, a Tor-powered botnet straight from Reddit	Claudio Guarnieri Mark Schloesser	Rapid7	Skynet
Smartcard vulnerabilities in modern banking malware	Aleksandr Matrosov	ESET	Carberp Ranbyus
Sopelka Botnet: three banking trojans and one banking panel	Jose Miguel Esparza	S21sec	Citadel Cridex Tatanga Sopelka
Spam botnets: The fall of Grum and the rise of Festi	Thomas Morrison	Spamhaus	Cutwail Festi Grum
SpyEye being kicked to the curb by its customers?	Sean Bodmer	Damballa	SpyEye ZeuS IceIX
Stamp EK (aka SofosFO) now showing "Blackhole 2.0 Like" landing pages	Kafeine	Kafeine
Static analysis of Dalvik bytecode and reflection in Android	Erik Ramsgaard Wognsen Henrik Søndberg Karlsen
Study of malware obfuscation techniques	Rodrigo Branco	HITBSecConf
Symantec/Android.Ackposts	Asuka Yamamoto	Symantec	Ackposts
Symantec/Android.Maistealer		Symantec	Maistealer
Symantec/Backdoor.Arcomrat	Branko Spasojevic	Symantec	Arcom
TDI - a new element in old TDSS story	Artem I. Baranov	Artem I. Baranov	TDSS
TDL4 reloaded: Purple Haze all in my brain	David Harley Aleksandr Matrosov Eugene Rodionov	ESET	TDL-4
TDSS botnet: full disclosure	Andrey Rassokhin Dmitry Oleksyuk	Esage Lab	TDSS
Tales from Crisis, Chapter 1: The dropper’s box of tricks	Osxreverser	Osxreverser	Crisis
Tales from Crisis, Chapter 2: Backdoor’s first steps	Osxreverser	Osxreverser	Crisis
Tales from Crisis, Chapter 3: The Italian rootkit job	Osxreverser	Osxreverser	Crisis
Tales from Crisis, Chapter 4: a ghost in the network	Osxreverser	Osxreverser	Crisis
Targeted destructive malware explained: Troj/Mdrop-ELD	Paul Baccas	Sophos Labs	DistTrack
Tatanga attack exposes chipTAN weaknesses	Amit Klein	Trusteer	Tatanga
The ACCDFISA malware family – Ransomware targeting Windows servers	Fabian Wosar	Emsisoft	Accdfisa
The ACCDFISA malware family – Ransomware targetting Windows servers		Emsisoft Lab	Accdfisa
The Cridex trojan targets 137 financial organizations in one go	Daniel Chechik	M86 Security Labs	SpyEye Carberp Cridex ZeuS
The Dorkbot rises	Bernadette Irinco	Trend Micro	Dorkbot
The Elderwood project (infographic)		Symantec
The Flame: questions and answers	Alexander Gostev	Kaspersky lab	Flame
The Madi campaign - Part II	Nicolas Brulez	Kaspersky lab	Madi
The Mirage campaign	Silas Cutler	DELL SecureWorks	Mirage
The Pobelka botnet - a command and control case study	Rickey Gevers	Digital Investigation	Citadel Pobelka
The ZeroAccess botnet: mining and fraud for massive financial gain	James Wyke	Sophos Labs	ZeroAccess
The ZeroAccess rootkit	James Wyke	Sophos	ZeroAccess
The first trojan in history to steal Linux and Mac OS X passwords	Dr. Web	Dr.Web	Wirenet
The lifecycle of peer-to-peer (Gameover) ZeuS	Brett Stone-Gross	DELL SecureWorks	Cutwail Dirt Jumper Gameover Pony
The mystery of Duqu framework solved	Igor Soumenkov	Kaspersky lab	Duqu
The mystery of Duqu: part ten	Alexander Gostev	Kaspersky lab	Duqu
The mystery of the Duqu framework	Igor Soumenkov	Kaspersky lab	Duqu
The where and why of Hlux	Sergey Golovanov	Kaspersky lab	Bredolab Kelihos Virut Gbot
The ‘Madi’ infostealers - a detailed analysis	Nicolas Brulez	Kaspersky lab	Madi
The “Hikit” rootkit: advanced and persistent attack techniques (part 1)	Christopher Glyer Ryan Kazanciyan	Mandiant	Hikit
The “Hikit” rootkit: advanced and persistent attack techniques (part 2)	Christopher Glyer Ryan Kazanciyan	Mandiant	Hikit
Tilon-son of Silon	Amit Klein	Trusteer	Silon Tilon
Top 50 bad hosts & networks 2011 Q4	Jart Armin Steve Burn Greg Feezel David Glosser Niels Groeneveld Tim Karpinsky Bogdan Vovchenko Will Rogofsky Philip Stranger Bryn Thompson	HostExploit	Dirt Jumper ZeuS
Tracking down the author of the PlugX RAT	Jaime Blasco	Alienvault	PlugX
Trojan moves its configuration to Twitter, LinkedIn, MSDN and Baidu	Snorre Fagerland	Norman
Trojan on the loose: an in-depth analysis of police trojan	Feike Hacquebord David Sancho	Trend Micro	Goldenbaks
Trojan.Prinimalka: bits and pieces	Dennis Schwarz	Arbor Networks	Gozi Prinimalka
Trojan.Taidoor takes aim at policy think tanks	Stephen Doherty Piotr Krysiu	Symantec	Taidoor
Trojan.Tatanarg.B careful!	Stephen Doherty	Symantec	Tatanarg Spamuzle
Trojan.ZeroAccess infection analysis	Sean Hittel Rong Zhou	Symantec	ZeroAccess
Unexpected reboot: Necurs	Tim Liu	Microsoft	Necurs
Unveiling the network criminal infrastructure of TDSS/TDL4 - DGAv14: a case study on a new TDSS/TDL4 variant	Manos Antonakakis Jeremy Demar David Dagon Kevin Stevens	Damballa	TDL-4 DGAv14
Upas Kit (aka Rombrast) integrates webinjects	Kafeine	Blogspot	Upas
Update to Citadel : 1.3.5.1 Rain Edition.	Kafeine		Citadel
Update to Citadel : v.1.3.4.5	Kafeine		Citadel
Urausy has big plan for Europe - Targeting 3 new countries among which Norway !	Kafeine		Urausy
Urausy improving its localization - A (the\?) Gaelic Ransomware with Interpol impersonation as default landing	Kafeine	Blogspot	Urausy
Virus Gendarmerie : variante Office Centrale de Luttre contre la criminalité – controle informationnel	Malekal Morte	Malekal	Epubb
W32.Changeup: how the worm was created	Masaki Suenaga	Symantec
W32.Flamer: spreading mechanism tricks and exploits		Symantec	Flame
W32.Shadesrat (Blackshades) author arrested		Symantec	BlackShades
W32.Tinba (Tinybanker) The turkish incident	Peter Kruse	Trend Micro	Tinba
Weelsof use SSL C&C	Xylitol	Xylitol	Weelsof
What was that Wiper thing?	GReAT	Kaspersky lab	Wiper
What’s the buzz with Bafruz		Microsoft	Rannoh Bafruz
Who's behind the Koobface botnet? - An OSINT analysis	Dancho Danchev		Koobface
Who's behind the world's largest spam botnet?	Brian Krebs	Brian Krebs	Grum
Win32/Gataka - or should we say Zutick?	Jean-Ian Boutin	ESET	Tatanga Tinba
Win32/Gataka banking Trojan - Detailed analysis	Jean-Ian Boutin	ESET	Tatanga
Win32/Gataka: a banking Trojan ready to take off	Jean-Ian Boutin	ESET	SpyEye Tatanga
Win32/Spy.Ranbyus modifying Java code in RBS Ukraine systems	Aleksandr Matrosov	ESET	Ranbyus
Winlock affiliate	Xylitol	Xylitol	Ransom.II
XPAJ: reversing a Windows x64 bootkit	Vyacheslav Rusakov	Kaspersky lab	Xpaj
You dirty RAT! Part 1 – DarkComet	Adam Kujawa	Malwarebytes	DarkComet
You dirty RAT! part 2 – BlackShades NET	Adam Kujawa	Malwarebytes	BlackShades DarkComet
ZACCESS/SIREFEF arrives with new infection technique	Manuel Gatbunton	Trend Micro	ZeroAccess
ZeroAccess - new steps in evolution	Artem I. Baranov	Artem Baranov	ZeroAccess
ZeroAccess's way of self-deletion	Wayne	F-Secure	ZeroAccess
ZeroAccess: code injection chronicles	Aleksandr Matrosov	ESET	ZeroAccess
ZeuS Gameover overview	Giuseppe Bonfà	Minded Security Research Lab	Gameover
ZeuS ransomware feature: win unlock	Mikko S. Marko	F-Secure	ZeuS
ZeuS v2 Malware Analysis - Part II	Patrick Olsen	System Forensics
ZeuS – P2P+DGA variant – mapping out and understanding the threat	CERT Polska Blog	CERT Polska	Gameover ZeuS
ZeuS: me talk pretty Finnish one day		F-Secure	ZeuS
ZeuSbot/Spyeye P2P updated, fortifying the botnet	Andrea Lelli	Symantec	SpyEye ZeuS Kelihos Waledac
Новый сэмпл Pandora DDoS Bot	Onthar		Pandora
‘Dexter’ virus targets point-of-sale terminals	Vito Pilieci	Postmedia Network Inc.	Dexter
‘Project Blitzkrieg’ promises more aggressive cyberheists against U.S. banks	Brian Krebs	Brian Krebs	Prinimalka

Semantic search

Query log

Navigation menu

Search