Ponmocup, the full story: A giant hiding in the shadows Botconf 2015 Wednesday | 11:50 – 12:40 Maarten van Dantzig 🗣 | Yonathan Klijnsma 🗣 Ponmocup is one of the most successful and longest running botnets of the past decade. First detected in 2006, as Vundo or Virtumonde, and detected as Ponmocup starting in 2011, we believe […]
Ponmocup, the full story: A giant hiding in the shadows Read More »
Butterfly attackers Botconf 2015 Wednesday | 14:50 – 15:40 Gavin O’Gorman 🗣 Edit
Butterfly attackers Read More »
The missing piece in threat intelligence Botconf 2015 Wednesday | 16:30 – 17:20 Frank Denis 🗣 Information sharing has become increasingly important to reduce risk against security threats. From public feeds to mechanisms for privately exchanging information between security researchers, the number of threat intelligence feeds may very well exceeds the number of actors being
The missing piece in threat intelligence Read More »
Honey ?! Where is my PoS ? Botconf 2015 Wednesday | 17:20 – 17:50 Marc Doudiet 🗣 It doesn’t pass a month without a news about a new POS (point-of-sale) malware or credit card data breach. By nature, the details of this kind of breach cannot be public (banks, ongoing investigation, reputation, …). But what
Honey ?! Where is my PoS ? Read More »
Takedowns: case studies and what we all could be doing better Botconf 2015 Wednesday | 17:50 – 18:30 John Bambenek 🗣 We have all seen the splashy headlines of large threats being subjected to takedowns only to re-emerge days (or hours) later. A few takedowns, however, have achieved long term results. This talk will focus
Takedowns: case studies and what we all could be doing better Read More »
DGArchive – A deep dive into domain generating malware Botconf 2015 Thursday | 09:00 – 09:50 Daniel Plohmann 🗣 An observable trend in recent years of malware development is the increased use of Domain Generation Algorithms (DGAs). After having announced the project “DGArchive” in a lightning talk of last year’s Botconf, we would like to
DGArchive – A deep dive into domain generating malware Read More »
Travelling to the far side of Andromeda Botconf 2015 Thursday | 09:50 – 10:30 Jose Miguel Esparza 🗣 Andromeda, also known as Gamarue by some Antivirus vendors, is a popular and modular bot active since 2011. It is normally used to spread additional malware, but sometimes, depending on the criminals, the main objective could be
Travelling to the far side of Andromeda Read More »
Whose phone is in your pocket? Botconf 2015 Thursday | 11:00 – 11:30 Mikhail Kuzin 🗣 | Nikita Buchka 🗣 In later April we discovered an Android malware that used for installing backdoor with root priveleges on the devices. This malware is popular in Russia, India, Ukraine, Algeria, but the spread is not limited to this countries.
Whose phone is in your pocket? Read More »
Building a hybrid experimental platform for mobile botnet research Botconf 2015 Thursday | 11:50 – 12:30 Apostolos Malatras 🗣 | Laurent Beslay Mobile botnets are an emerging security threat that aims at exploiting the wide penetration of mobile devices and systems and their vulnerabilities in the same spirit of traditional botnets. Mobile botmasters take advantage of infected
Building a hybrid experimental platform for mobile botnet research Read More »
BoxBotNet Botconf 2015 Thursday | 14:00 – 14:40 Paul Jung 🗣 A hosted box botnet, is a botnet of compromised web servers, usually using vulnerabilities in CMS on low cost hosted servers. Since last year I had followed an indonesian group which operate this kind of botnet and resell access to theses powned servers. The