Lessons learned from sinkholing the ZeroAccess botnet
by Zeljka Zorz - Managing Editor - Wednesday, 16 October 2013.
ZeroAccess (or Sirefef) is a piece of malware that is very adept at hiding its existence from users, and brings in huge sums of money to its masters by performing click-fraud and Bitcoin mining.

The ZeroAccess botnet is currently one of the largest one in existence, but its creators have recently received quite a blow when Symantec researchers managed to sinkhole nearly half a million of its bots.

In this podcast recorded at the Virus Bulletin 2013, Candid WŁest from Symantec shares details about their research into the malware, the sinkholing operation they executed, and the lessons they learned from it.

Press the play button below to listen to the podcast:



Candid WŁest, Principal Threat Researcher at Symantec Security Response. He researches new threat vectors, analyses trends and formulates new mitigation strategies. Previously he was working as a Virus Analyst in the anti malware laboratory of Symantec in Dublin/Ireland, analyzing malware and creating signatures. Before that he was part of the global security analyzing lab of IBM Research in RŁschlikon. He has published various whitepapers and appeared in magazines and TV shows. He is a frequent speaker at conferences like Virus Bulletin and RSA.

Spotlight

Leveraging network intelligence and deep packet inspection

Posted on 26 November 2014.  |  Tomer Saban, CEO of WireX Systems, talks about how deep packet inspection helps with identifying emerging threats, the role of network intelligence, and more.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  

DON'T
MISS

Thu, Nov 27th
    COPYRIGHT 1998-2014 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //