Taking down botnets is a challenging and complex process, requiring not just long-term technical analysis of the threat faced but also successful cross-border and cross-jurisdiction cooperation and coordination, involving many different entities and legal systems. A succesful operation culminates in a quick shutdown of cybercriminal operations, sinkholing of botnet command and cotnrol infrastructure and potentially a lot of media attention. But what happens behind the scenes to make all of that possible? The talk will describe the non-profit Shadowserver Foundation's first-hand experiences and lessons learned in assisting law enforcement in botnet taketown operations, including in the recent Andromeda/Avalanche takedown.


time: 14:50

Other sessions:

Five Years of DANE - Modern, Secure and Stress-free SMTP

Time is Up: Upcoming Regulations to Enforce Cyber Secure Equipment

Enhance Encrypted Network Takedown Operations

Malpedia – Code Cartographer’s Diary