Taking down botnets is a challenging and complex process, requiring not just long-term technical analysis of the threat faced but also successful cross-border and cross-jurisdiction cooperation and coordination, involving many different entities and legal systems. A succesful operation culminates in a quick shutdown of cybercriminal operations, sinkholing of botnet command and cotnrol infrastructure and potentially a lot of media attention. But what happens behind the scenes to make all of that possible? The talk will describe the non-profit Shadowserver Foundation's first-hand experiences and lessons learned in assisting law enforcement in botnet taketown operations, including in the recent Andromeda/Avalanche takedown.

Details

time: 14:50
speakers: David Watson, Stewart Garrick

Other sessions:

Let’s Update the Way we Do Updates


Enhance Encrypted Network Takedown Operations


Landscape of Nation State Attacks


Time is Up: Upcoming Regulations to Enforce Cyber Secure Equipment


Disrupting Financial Cybercrime


Let’s go Dutch – DCB + NBIP