While Locky and Dridex inner working are well understood as they have been on the news all year long, how their distribution system operate is still relatively unknown as it is only seen by email providers. In this talk we lift the curtain and present how Locky, Dridex, and Necurs
Practical case: how legislation can improve Law Enforcement effectiveness in pursuing criminals acting in an international environment What to do when criminals act as if they were multinational enterprises, delocalizing their criminal services across multiple jurisdictions? When Internet is borderless and laws are bound to territories, successfully disrupting a botnet
Botnet is currently a existing threat to Internet users around the world. Users can lose money, personal information if infected. Bonet takedown has been a pressing need of many organizations in the world: the FBI, the national governments, the Internet service provider (ISP). For ISPs, this is actually a legitimate
Want to give your blog a push or your “gun show” more views? Then why not buy 50,000 fake followers for $1,000! Click farms from down South or botnets such as Game over Zeus will be more than happy to supply them for you. For this talk, a criminologist and
When asked to speak about the topic “Ransomware” and especially with an experienced audience that attends “BotConf” – what new can one tell? Well, maybe sharing some experiences around the research in ransomware we conducted, the explosive increase in 2016, why did it take so long for the industry to
29th November – 14:00 – 17:30 – SEPARATE REGISTRATION NEEDED This workshop takes us into the world of banking malware, and more specifically into researchers’ chase after configurations – the attack books that dictate which banks are targeted and how. These precious ever-changing fragments of data and the continuous change in
29th November – 14:00 – 17:30 – SEPARATE REGISTRATION NEEDED Nowadays there are a lot of tools to analyze traffic, but the most important thing to have is the experience and knowledge of a malware analyst. The goal of the workshop is to give a hands-on experience on analyzing the behavior
29th November – 14:00 – 17:30 – SEPARATE REGISTRATION NEEDED MISP is becoming a key open source package for indicator and threat sharing in the information security community. MISP improved its modularity in the recent versions and propose various ways to use and extend the platform. The workshop will introduce developers
A normal computer infected with malware is difficult to detect. There have been several approaches in the last years which analyze the behavior of malware and obtain good results. The malware traffic may be detected, but it is very common to miss-detect normal traffic as malicious and generate false positives.
In the current threat landscape, we see most botnets propagating via exploits and file based malware. Anything that touches the disk has the ability to be blocked via access controls on the host. New techniques utilize more than just binaries to execute malicious code which is why there is a
By continuing to use the site, you agree to the use of cookies. more information
The cookie settings on this website are set to "allow cookies" to give you the best browsing experience possible. If you continue to use this website without changing your cookie settings or you click "Accept" below then you are consenting to this.