Taking down botnets is a challenging and complex process, requiring not just long-term technical analysis of the threat faced but also successful cross-border and cross-jurisdiction cooperation and coordination, involving many different entities and legal systems. A succesful operation culminates in a quick shutdown of cybercriminal operations, sinkholing of botnet command and cotnrol infrastructure and potentially a lot of media attention. But what happens behind the scenes to make all of that possible? The talk will describe the non-profit Shadowserver Foundation's first-hand experiences and lessons learned in assisting law enforcement in botnet taketown operations, including in the recent Andromeda/Avalanche takedown.

Details

time: 14:50
speakers:

Other sessions:

Enhance Encrypted Network Takedown Operations


Time is Up: Upcoming Regulations to Enforce Cyber Secure Equipment


Disrupting Financial Cybercrime


The Dutch Response to a Cyber Incident


Let’s Update the Way we Do Updates


IoTHoney: Open Source IoT Honeypotting