Lessons learned from sinkholing the ZeroAccess botnet
by Zeljka Zorz - Managing Editor - Wednesday, 16 October 2013.
ZeroAccess (or Sirefef) is a piece of malware that is very adept at hiding its existence from users, and brings in huge sums of money to its masters by performing click-fraud and Bitcoin mining.

The ZeroAccess botnet is currently one of the largest one in existence, but its creators have recently received quite a blow when Symantec researchers managed to sinkhole nearly half a million of its bots.

In this podcast recorded at the Virus Bulletin 2013, Candid WŁest from Symantec shares details about their research into the malware, the sinkholing operation they executed, and the lessons they learned from it.

Press the play button below to listen to the podcast:



Candid WŁest, Principal Threat Researcher at Symantec Security Response. He researches new threat vectors, analyses trends and formulates new mitigation strategies. Previously he was working as a Virus Analyst in the anti malware laboratory of Symantec in Dublin/Ireland, analyzing malware and creating signatures. Before that he was part of the global security analyzing lab of IBM Research in RŁschlikon. He has published various whitepapers and appeared in magazines and TV shows. He is a frequent speaker at conferences like Virus Bulletin and RSA.

Spotlight

The synergy of hackers and tools at the Black Hat Arsenal

Posted on 27 August 2014.  |  Tucked away from the glamour of the vendor booths and the large presentation rooms filled with rockstar sessions, was the Arsenal - a place where developers were able to present their security tools and grow their community.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Wed, Aug 27th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //