-
Recent Posts
Recent Comments
Archives
Categories
- (ISC)2
- AMTSO
- articles
- Aryeh Goretsky
- AVAR
- AVIEN
- BCS Institute
- CFET
- ChainMailCheck
- Computer Weekly
- conference papers
- Dan Raywood
- David Harley
- EICAR
- Elsevier
- ESET
- eWeek
- Hakin9
- inaudit.com
- Infosecurity Magazine
- Internet Evolution
- Interviews
- IT Pro
- Kevin Townsend
- Mac Virus
- Naked Security
- Network Security
- Professional Security
- SC Magazine
- Securiteam
- Small Blue-Green World
- Sophos
- Spamfighter
- Sys-Con Media
- The Times
- Uncategorized
- VB Conference Papers
- Virus Bulletin
- Virus Bulletin articles
- Wall Street Journal
- white paper
- Words & Music
- ZDNet
Meta
Monthly Archives: Jun 2013
CFET Paper (5)
My most recent CFET paper, co-written with Martijn Grooten (Virus Bulletin), Craig Johnston (independent researcher) and Stephen Burn (Malwarebytes). FUD and Blunder: Tracking PC Support Scams Presented at the Cybercrime Forensics Education & Training Conference in September 2012, this paper … Continue reading
Posted in CFET, conference papers, David Harley
Tagged fake AV, forensics, marketing, scareware, support scams
Leave a comment
CFET Paper (4)
Man, Myth, Malware and Multi-Scanning is the 4th of my CFET papers, co-written with Julio Canto of VirusTotal. Almost uniquely (for me), the paper was written some time after the presentation at the conference. [My other presentation at that conference – … Continue reading
Posted in AMTSO, CFET, conference papers, David Harley
Tagged Julio Canto, multi-scanning, pseudo-testing, pseudo-validation, VirusTotal
Leave a comment
CFET paper (3)
This was the second of two papers I presented at CFET in 2010. SODDImy and the Trojan Defence This paper looks at the implications in the age of the botnet of the “Some Other Dude Did It” and “it must … Continue reading
Posted in CFET, conference papers, David Harley, Small Blue-Green World
Tagged chain of evidence, child abuse, forensics, Julie Amero, SODDI
Leave a comment
CFET Paper (2)
This was my second CFET paper. Antivirus Testing and AMTSO: Has Anything Changed? A summary of how the Anti-Malware Testing Standards Organization has developed in the past few years and the way in which the AV and testing industries have … Continue reading
CFET paper (1)
This is the paper on malware naming I presented at the 3rd Cybercrime Forensics Education & Training (CFET 2009) Conference in Canterbury on The Game of the Name Malware Naming, Shape Shifters and Sympathetic Magic. Here’s the abstract: Once upon a time, … Continue reading
Virus Bulletin article, July 2006
When I left the NHS in 2006, one of the first jobs I took on as a freelancer was writing for Ferris Research. This was an article that I was going to submit to them, but it obstinately refused to … Continue reading
Posted in articles, David Harley, Small Blue-Green World, Virus Bulletin articles
Tagged ham, IP block, mail filtering, spam, Verizon
Leave a comment
EICAR Paper (11): PIN Holes: Numeric Passcodes and Mnemonic Strategies
This is the second paper I presented at the EICAR 2012 conference in Lisbon. As before, It’s posted here rather than on the ESET resources page for conference papers in accordance with EICAR’s copyright stipulation that EICAR conference papers be posted … Continue reading
Posted in conference papers, David Harley, EICAR
Tagged Amitay, entropy, mnemonic strategy, passcode, passphrase, password, PIN, Rasmussen, rote learning, Rudmin
Leave a comment
