Lessons learned from sinkholing the ZeroAccess botnet
by Zeljka Zorz - Managing Editor - Wednesday, 16 October 2013.
ZeroAccess (or Sirefef) is a piece of malware that is very adept at hiding its existence from users, and brings in huge sums of money to its masters by performing click-fraud and Bitcoin mining.

The ZeroAccess botnet is currently one of the largest one in existence, but its creators have recently received quite a blow when Symantec researchers managed to sinkhole nearly half a million of its bots.

In this podcast recorded at the Virus Bulletin 2013, Candid Wüest from Symantec shares details about their research into the malware, the sinkholing operation they executed, and the lessons they learned from it.

Press the play button below to listen to the podcast:



Candid Wüest, Principal Threat Researcher at Symantec Security Response. He researches new threat vectors, analyses trends and formulates new mitigation strategies. Previously he was working as a Virus Analyst in the anti malware laboratory of Symantec in Dublin/Ireland, analyzing malware and creating signatures. Before that he was part of the global security analyzing lab of IBM Research in Rüschlikon. He has published various whitepapers and appeared in magazines and TV shows. He is a frequent speaker at conferences like Virus Bulletin and RSA.

Spotlight

Harnessing artificial intelligence to build an army of virtual analysts

PatternEx, a startup that gathered a team of AI researcher from MIT CSAIL as well as security and distributed systems experts, is poised to shake up things in the user and entity behavior analytics market.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Tue, Feb 9th
    COPYRIGHT 1998-2016 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //