Join us for the best kept secret of the infosec industry!

The conference might be over, but you can still catch up — register now to access all presentations, including recorded live tracks.

WHEN 30 Sept - 2 Oct, 2020
Free Registration
Conference starts in
0 Days
0 Hours
0 Minutes
0 Seconds


What’s in it for me?

VB2020 localhost is the annual and world-renowned Virus Bulletin international conference gone virtual. Featuring the latest and best research on malware, malicious actors and threat intelligence, with live streamed content for 3 days as well as the company of your fellow security researchers from around the world - from novices to legends.

The conference will be broadcast live for 4 hours each day, from 6PM to 10PM GMT+2:00. You can join anytime, and re-watch, rewind or pause the live stream. A wide selection of presentations will also be available for on-demand viewing. It’s no conference without a great community, so we’ll also bring you a Discord server for discussion, networking, QA and fun.

58+ Presentations
94+ Speakers
48+ Organizations
30 Years of history


Highlighted presentations

Full Programme
18:15 - 18:45 UTC Fri 2 Oct 2020

XDSpy: stealing government secrets since 2011

Programme Separator
Matthieu Faou (ESET) & Francis Labelle (ESET)
17:45 - 18:15 UTC Fri 2 Oct 2020

Tonto Team: exploring the TTPs of an advanced threat actor operating a large infrastructure

Programme Separator
Daniel Lunghi (Trend Micro) & Jaromir Horejsi (Trend Micro)
17:00 - 17:30 UTC Fri 2 Oct 2020

Hunting for malware with command line logging and process trees

Programme Separator
Ivan Vanja Svajcer (Cisco Talos)
16:00 - 16:30 UTC Fri 2 Oct

Graphology of an exploit – hunting for exploits by looking for the author’s fingerprints

Programme Separator
Itay Cohen (Check Point Research) & Eyal Itkin (Check Point Research)
16:00 - 16:30 UTC Thu 1 Oct 2020

Hunting for Android 1-days: analysis of rooting ecosystem

Programme Separator
Eugene Rodionov (Google), Richard Neal (Google) & Lin Chen (Google)
17:00 - 17:30 UTC Thu 1 Oct 2020

SilentFade: unveiling Chinese malware abusing Facebook ad platform

Programme Separator
Sanchit Karve (Facebook) & Jennifer Urgilez (Facebook)
17:45 - 18:15 UTC Thu 1 Oct 2020

LATAM financial cybercrime: competitors in crime sharing TTPs

Programme Separator
Jakub Souček (ESET) & Martin Jirkal (ESET)
18:15 - 18:45 UTC Thu 1 Oct 2020

Hello from the OT side!

Programme Separator
Daniel Kapellmann Zafra (FireEye)
19:30 - 20:00 UTC Wed 30 Sept 2020

Why the security world should take stalkerware seriously

Programme Separator
David Ruiz (Malwarebytes)
19:00 - 19:30 UTC Thu 1 Oct 2020

Growth and commoditization of remote access trojans

Programme Separator
Veronica Valeros (Czech Technical University in Prague) & Sebastian García (Czech Technical University in Prague)
17:00 - 17:30 UTC Wed 30 Sept 2020

The fall of Domino – a preinstalled hostile downloader

Programme Separator
Łukasz Siewierski (Google)
16:30 - 17:00 UTC Wed 30 Sept 2020

The eye on the Nile: Egypt’s civil society under attack

Programme Separator
Aseel Kayal (Check Point Software Technologies)

Emissary (Pandas) in the Middle East

Programme Separator
James Shank (Team Cymru) & Jacomo Piccolini (Team Cymru)


Those in the know said...

Richard Ford, Ph.D. Chief Technology Officer, Cyren

Not all security events are created equal – the Virus Bulletin Conference remains one of the few places to get deep, accurate, and above all actionable information that can help your organization defend itself from malicious code today.

Jeannette Jarvis Cyber Threat Alliance

This is my favourite conference to attend each year. I love how Virus Bulletin conference brings deep technical talks for researchers but also offers useful information for enterprise defenders, and you can have deep conversations with the best security experts in the world.

Jewel Timpe Senior Manager, HPE Security

Securing our digital world takes innovation and collaboration across all disciplines and industries. There are few gatherings focused on this endeavour that are of the highest quality and passion… VB is one of them.

Conny Javerdal Swedish Transport Administration

An outstanding conference to learn the latest in IT security, get new ideas and create new contacts in a very friendly atmosphere. The VB Conference is number 1 for me for many years both in the short and long term.

Mitch Neff Community, Brand, Open Source Outreach, Cisco Talos

I had a wonderful time at Virus Bulletin. What a wonderful conference and collection of presenters and attendees. Truly one of the most enjoyable and enriching conference experiences of the year.

Jose Miguel Esparza Head of Threat Intelligence, Blueliv

After my first time at @virusbtn I have to say that it’s a really good conference: interesting talks, everybody in the malware/antivirus industry is here, good organization… Definitely a new addition to my must-go list.

Virus Bulletin Threat Intelligence Practitioners' Summit

Threat Intelligence as a Force Multiplier

Join the Virus Bulletin Threat Intelligence Practitioners' Summit and learn how various teams are investing in threat intelligence as a force multiplier to accomplish great feats.

Threat Intelligence is a necessary part of any security solution and as a force multiplier it can dramatically increase the effectiveness of any cybersecurity product, service, or team. Threat Intelligence becomes a force multiplier in our battle against the adversaries as they look to gain access into our networks. We are a greater team when we work together; our collective efforts magnifies our success.

The TIPS track is sponsored by the Cyber Threat Alliance

Special Thanks to….

Our Partners


Register now for free!

The conference might be over, but you can still catch up — register now to access all presentations, including recorded live tracks.

Free Registration


Questions & Answers

What is VB2020 localhost?

It’s the world-renowned VB conference, as reimagined in an online format. And you get to watch it in a properly socially distanced manner from the comfort of your sofa!

When will VB2020 localhost be held?

The event will run from 30 Sep to 2 Oct, 2020, with a live broadcast every day from 16:00 to 20:00 UTC (starting in the morning in the Americas, in the evening in Europe, and late night in most of Asia).

If those times are not convenient for you, don’t worry – the conference website will be open around the clock, and you will be able to rewind and re-watch live broadcasts, in addition to plenty of presentations available for on-demand viewing. We also expect our chat server to be active throughout the entire event, so you are not going to miss anything: one of the advantages of a global audience is that someone is always awake!

What topics will be covered?

Our content revolves around in-depth analysis of cybercrime, malware, adversary tactics and the like. Presentations from CTA’s Threat Intelligence Practitioners’ Summit (TIPS) focus on threat intelligence and fostering industry cooperation. For a more precise idea, check out the conference programme.

Please note that as of writing this, the programme is still evolving – there is more to come!

Will there be networking opportunities?

Absolutely! The event will be running a dedicated Discord server, through which you can chat with other participants, contact event partners and speakers and even set up 1:1 or small group meetings via text, audio or video.

How much do tickets cost? (Spoiler alert: $0)

Like the best things in life, VB2020 localhost is free.

How do I join the event?

Please register for VB2020 localhost. Once registered, you will receive a link via email that will become “live” once the conference starts.

Registration is open before, during and after the event, and you can join at any time… so why not register now?

How does VB2020 localhost compare to the in-person conference?

We will bring the usual amount of great content your way, but instead of the 3 parallel tracks of the in-person conference and presentations running throughout the day, we will have a single track, broadcasting live for 4 hours a day. This means many presentations will be available outside the live broadcast for on-demand viewing – meaning you no longer have to choose between tracks and you can watch the presentations whenever and wherever suits you.

Will there be an in-person version of the VB conference this year?

No, that would not be safe. As for VB2021, as long as it is safe to do so we will see you in person – we look forward to it! Watch out for the announcement of dates & location at the end of the live broadcast on Day #3.

How is VB2020 localhost different from other virtual infosec events?

We are aiming to bring the usual high production values of the VB Conference to the online format to turn VB2020 into a virtual event that you can really enjoy. Among other things, we are paying close attention to audio and video quality to make it as good a listening experience as possible; there will be a live host to make it more than just a series of presentations; and there will be a chat system that works for a high number of visitors (and supports 1:1 and group chats, calls, etc.).

What software will I need to attend the conference?

VB2020 localhost will be web-based, so all you will need is a computer, tablet or smartphone and an internet connection.

What languages will sessions be available in?

The language of the presentations and the conference is English.

Are there partnership opportunities for VB2020 localhost?

There are! We have a number of exciting opportunities to support your goals, no matter if you are seeking brand exposure, lead generation or recruitment. Get in touch with us to find out more at

How do I submit a session for VB2020 localhost?

The VB localhost programme is now complete, but we’d love to hear from you next year – keep an eye on our website for announcements!