Nymaim Origins, Revival and Reversing Tales Botconf 2016 Friday | 09:30 – 10:00 Alberto Ortega 🗣 In this presentation we will talk about the return of Nymaim. We will emphasize on how they got into banking fraud and the complexity they added to the code to make reversing tough and also overcome dynamic analysis, signature […]
Nymaim Origins, Revival and Reversing Tales Read More »
Rough Diamonds in Banking Botnets Botconf 2016 Friday | 10:05 – 10:55 Jose Miguel Esparza 🗣 | Frank Ruiz 🗣 Millions of computers are infected and become part of botnets every day. Our relatives and most of our friends are happily infected, but some of these bots are more important than others. Botnet herders are aware of
Rough Diamonds in Banking Botnets Read More »
ISFB, Still Live and Kicking Botconf 2016 Friday | 11:25 – 12:15 Maciej Kotowicz 🗣 Also known as Gozi2/Ursnif, sometimes Rovnix, ISFB reappeared in early 2013 attracting some attention from the research community and a lot of confusion in the naming convention and to what was being analyzed. Then suddenly, it went dark again. However,
ISFB, Still Live and Kicking Read More »
Challenges for a cross-jurisdictional botnet takedown Botconf 2016 Friday | 12:20 – 13:00 Margarita Louca 🗣 Practical case: how legislation can improve Law Enforcement effectiveness in pursuing criminals acting in an international environment.What to do when criminals act as if they were multinational enterprises, delocalizing their criminal services across multiple jurisdictions? When Internet is borderless
Challenges for a cross-jurisdictional botnet takedown Read More »
Preventing File-Based Botnet Persistence and Growth Botconf 2016 Friday | 14:00 – 14:30 Kurtis Armour 🗣 In the current threat landscape, we see most botnets propagating via exploits and file based malware. Anything that touches the disk has the ability to be blocked via access controls on the host. New techniques utilize more than just
Preventing File-Based Botnet Persistence and Growth Read More »
Dridex Gone Phishing Botconf 2016 Friday | 14:35 – 15:15 Magal Baz 🗣 | Gal Meiri 🗣 In January 2016, we discovered a new modus operandi launched by Evil Corp, the organization that owned and operated Dridex banking Trojan. A new build was released to the wild, using Andromeda botnet platform, mainly targeting users in the UK.
Dridex Gone Phishing Read More »
Vawtrak Banking Trojan : A Threat to the Banking Ecosystem Botconf 2016 Wednesday | 16:00 – 16:50 Victor Acin 🗣 | Raashid Bhat 🗣 Vawtrak has been among the top banking Trojans since quite a long time now. Banking Trojans have not been discussed much in security conferences contrary to APT’s and other type of malwares. This
Vawtrak Banking Trojan : A Threat to the Banking Ecosystem Read More »
Snoring Is Optional: The Metrics and Economics of Cyber Insurance for Malware Related Claims Botconf 2016 Wednesday | 16:55 – 17:35 Wayne Crowder 🗣 Insurance addresses the economics of security on the internet. Cyber insurance is sold to companies as a way to offset the risk and costs of a security incident. Governments, large enterprises
Hunting Droids from the Inside Botconf 2016 Wednesday | 17:40 – 18:20 Łukasz Siewierski 🗣 This talk will be a survey of different potentially harmful applications (PHAs), botnets and malware campaigns on Android that we encountered in 2016. I’ll walk through a variety of different malicious apps, explain the malware authors’ objectives and the techniques
Hunting Droids from the Inside Read More »
Ransomware & Beyond Botconf 2016 Thursday | 09:00 – 09:40 Christiaan Beek 🗣 Edit PDF
Ransomware & Beyond Read More »