German Law Enforcement Officials Receive 2017 M3AAWG J.D. Falk Award for Initiating Global Takedown of Avalanche Malware
TORONTO, Oct. 04, 2017 (GLOBE NEWSWIRE) -- M3AAWG honored two German law enforcement officials today for their work in developing the global public/private collaboration that shutdown a massive malware offensive infecting computers in 189 countries and costing victims over $6 million in ransomware payments. Lower Saxony Chief Police Inspector Jörn Bisping and Senior Prosecutor Frank Lange received the 2017 M3AAWG J.D. Falk Award from the Messaging, Malware and Mobile Anti-Abuse Working group for spearheading worldwide efforts to dismantle the criminalized Avalanche platform.
A video accompanying this announcement is available at http://www.globenewswire.com/NewsRoom/AttachmentNg/e536b838-7da6-4b77-8a95-c5d36f2d5a62
The global cooperative efforts initiated by the German police and prosecutor's office resulted in eight arrests, 500 court orders, 37 onsite searches and 39 servers seized worldwide. Over 800,000 domains were seized, blocked or had their traffic diverted to a safe server rather than one controlled by criminals - a process known as sinkholing - making it the largest law enforcement operation to redirect malicious domains to date.
"There was unprecedented cooperation worldwide, including registries in Russia and China taking down malicious domains, and support from smaller countries with lesser-known domains. We worked out some of the processes for collaborating better, and future takedowns and activities against cybercriminals will move even faster," Bisping said in discussing the award.
A massive and complex criminal platform, Avalanche was used to deploy several attack vectors. Bots on the Avalanche network could determine if the targeted victim was accessing online banking and, if so, would plant key loggers and other malware on these systems to steal the user's login credentials. Other users would be targeted with ransomware malware. The platform also was used to recruit money laundering "mules" with a convoluted scheme to move stolen funds and ransom out of the country of origin by diverting payments between contracted sources.
In announcing the award at the M3AAWG four-day meeting in Toronto, Canada, the organization's Chairman of the Board Severin Walker said, "Global action is the only way to protect our local citizens. It's our professional responsibility to take the initiative in identifying major threats and then reach out to the international community to help confront them. Chief Inspector Bisping and Senior Prosecutor Lange did just this and millions of end-users are much safer now and have benefited from their dedication."
Five Years of Meticulously Detailed Investigation
The work behind the November 30, 2016 global Avalanche takedown started five years earlier when Bisping, with the Lower Saxony Police in Luneburg, began investigating a single cyberattack that appeared to be responsible for 200 local ransomware cases. In 2013, Lange, a senior prosecutor with the Public Prosecutor's Office in Verden, escalated the investigation to include more than 6,000 similar attacks throughout Germany. As the global scope and complexity of the Avalanche platform became known, they reached out to cybercrime experts such as the German Federal Office for Information Security (BSI) and the Fraunhofer-Institut für Kommunikation, Informationsverarbeitung und Ergonomie (FKIE), which eventually analyzed over 130 TB of captured data to identify the botnet server structure.
Lange said, "We realized through reverse engineering and other detailed analysis that Avalanche was more than just a botnet or a network running a few types of malware; it was a complete infrastructure and it would be impossible to stop without the help of other countries. By this time, we were in a position to invite the international community to work with us on three goals: to take down the servers, issue arrest warrants to those running them, and sinkhole all the families of malware we identified on the platform."
In July of 2015, German police officials asked the U.S. Federal Bureau of Investigation for assistance. This eventually led to the international takedown in late 2016 that diverted traffic headed to the known malicious domains to the collaboration team's servers and to the arrests. The investigation and the subsequent operation also involved the European police agency Europol, the European Union's Judicial Cooperation Unit or Eurojust, the U.S. Department of Justice, cybersecurity organizations such as Shadowserver, and investigators and prosecutors in more than 40 countries.
The J.D. Falk Award recognizes a significant achievement that protects end-users and the people working behind the scenes to make a better online world. The 2017 award was announced at the M3AAWG 41stGeneral Meeting in Toronto, Canada, with over 300 cybersecurity participants from around the world at the Oct. 3-5 event. M3AAWG also hosted UCENet (previously known as the London Action Plan) during the week. The M3AAWG 42nd General Meeting will be February 19-22, 2018 in San Francisco, USA.
About the Messaging, Malware and Mobile Anti-Abuse Working Group (M 3 AAWG)
The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) is where the industry comes together to work against bots, malware, spam, viruses, denial-of-service attacks and other online exploitation. M3AAWG (www.m3aawg.org) members represent more than one billion mailboxes from some of the largest network operators worldwide. It leverages the depth and experience of its global membership to tackle abuse on existing networks and new emerging services through technology, collaboration and public policy. It also works to educate global policy makers on the technical and operational issues related to online abuse and messaging. Headquartered in San Francisco, Calif., M3AAWG is driven by market needs and supported by major network operators and messaging providers.
Media Contact: Linda Marcus, APR, +1-949-887-8887, LMarcus@astra.cc, Astra Communications
M3AAWG Board of Directors: AT&T; CenturyLink; Cloudmark, Inc.; Comcast; dotmailer; Endurance International Group; Facebook; Google; LinkedIn; Mailchimp; Microsoft Corp.; Oath (Yahoo and AOL); Orange; Rackspace; Return Path; SendGrid, Inc.; Vade Secure.
M3AAWG Full Members: 1&1 Internet AG; Adobe Systems Inc.; Agora, Inc.; AOL; Campaign Monitor Pty.; Cisco Systems, Inc.; CloudFlare; Dyn; Exact Target, Inc.; IBM; iContact; Intel Security; Internet Initiative Japan (IIJ); Liberty Global; Listrak; Litmus; Mimecast; Nominum, Inc.; Oracle Marketing Cloud; OVH; PayPal; Proofpoint; Spamhaus; Sparkpost; Sprint; Symantec; and USAA.
A complete member list is available at http://www.m3aawg.org/about/roster.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Messaging Anti-Abuse Working Group (M3AAWG) via Globenewswire
One Liberty Plaza - 165 Broadway
NY 10006 New York
GlobeNewswire is one of the world's largest newswire distribution networks, specializing in the delivery of corporate press releases financial disclosures and multimedia content to the media, investment community, individual investors and the general public.
Følg saker fra GlobeNewswire
Registrer deg med din epostadresse under for å få de nyeste sakene fra GlobeNewswire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra GlobeNewswire
CTG Promotes Three Long-time Business Leaders in Europe15.2.2019 15:00:00 | Pressemelding
Bob Daelman, Guido Helsloot and Rénald Wauthier named Vice Presidents BUFFALO, N.Y., Feb. 15, 2019 (GLOBE NEWSWIRE) -- CTG (NASDAQ: CTG), a leading provider of information technology (IT) solutions and services in North America and Western Europe, announced today that three of the Company’s high-performing managers in its European business, Bob Daelman, Guido Helsloot and Rénald Wauthier, have each been named vice president. “Bob Daelman and Rénald Wauthier have proven track records of significantly expanding their respective businesses in Europe. Guido Helsloot has been key enabler in effecting two acquisitions in the past six years that expanded our operations and was again instrumental in driving our recent Tech-IT acquisition that will give CTG broader end-to-end capabilities to better-serve our clients. Together, this team has greatly contributed to our success in Europe, where CTG has recorded eight consecutive years of revenue growth,” commented Filip Gydé, current Executive Vic
Jazwares Announces Partnership with Kellytoy for Russ Berrie™ Worldwide15.2.2019 01:00:00 | Pressemelding
Sunrise, FL, Feb. 14, 2019 (GLOBE NEWSWIRE) -- Jazwares LLC, a global leader in toys and licensing, announced today that its affiliate Zag Toys, LLC (“Zag Toys”) formed a strategic partnership for their wholly owned brand Russ Berrie™, with Kellytoy, an influential manufacturer and distributor of plush toys and pet products. This relationship will carry on the 50+ year legacy of the Russ Berrie™ brand, positioning it globally as the premier plush brand on retail shelves in Fall 2019. Kellytoy will market the Russ Berrie™ brand through its global distribution channels, which include almost every market segment. “Working together with Kellytoy will maximize the Russ Berrie™ legacy,” says Judd Zebersky, Jazwares CEO and President. “By leveraging Russ Berrie™ and its reputation for quality and commitment to “Make Someone Happy™” with Kellytoy’s global footprint we’ll secure placement in retailers all around the world, putting Russ Berrie™ at the forefront of today’s plush presence at retai
PROFEPA report confirms no contamination of soil from overflow of contingency pond at the San Jose Mine, Mexico in October 201814.2.2019 19:46:00 | Pressemelding
VANCOUVER, British Columbia, Feb. 14, 2019 (GLOBE NEWSWIRE) -- Fortuna Silver Mines Inc. (NYSE: FSM) (TSX: FVI) is pleased to report that the Federal Attorney's Office for Environmental Protection (PROFEPA) has completed its investigation into the overflow of the contingency pond at the dry stack tailings facility at the San Jose Mine on October 8, 2018, which was caused by heavy seasonal rains (refer to Fortuna news release dated October 11, 2018). PROFEPA’s final report confirms that the overflow did not contaminate soil, and therefore no remediation is required. The Company awaits a final report from the Mexican National Water Commission (CONAGUA). The Company reiterates its commitment to safeguarding the wellbeing of the environment, local communities and our work force. About Fortuna Silver Mines Inc. Fortuna is a growth oriented, precious metals producer focused on mining opportunities in Latin America. Our primary assets are the Caylloma silver Mine in southern Peru, the San Jos
Cloudian HyperStore Named 2018 Product of the Year in Software-defined and Cloud Storage by Storage Magazine14.2.2019 19:10:00 | Pressemelding
Also Wins Best Hybrid Cloud Solution in 2018-2019 Cloud Awards, Further Reinforcing Company’s Object Storage Leadership SAN MATEO, Calif., Feb. 14, 2019 (GLOBE NEWSWIRE) -- Cloudian today announced two top industry awards for its HyperStore object storage platform. The awards are the latest honors for the company’s limitlessly scalable, highly cost-effective solution, which provides the industry’s best S3 compatibility and seamless data management across on-premises and public cloud environments. 2018 Software-defined and Cloud Storage Product of the Year TechTarget’s Storage magazine and SearchStorage.com named HyperStore 7 as the Gold winner in the Software-defined and Cloud Storage category of the 2018 Products of the Year Awards. The judging panel of analysts, consultants, users and TechTarget writers were “particularly impressed with [HyperStore’s] functionality.” In addition, the solution received high marks for innovation, value and ease of integration, use and manageability, en
Hot Silicon Valley Tech Firm Grows in Krakow14.2.2019 16:28:00 | Pressemelding
SignalFx Opens Research and Development and Support Office; Hires Industry Veteran Martin Burlinski, Head of Engineering, EMEA SAN MATEO, Calif., Feb. 14, 2019 (GLOBE NEWSWIRE) -- SignalFx, the leader in real-time cloud monitoring for infrastructure, microservices, and applications, is announcing the opening of a new Research, Development and Support Office in Krakow, Poland and the addition of Martin Burlinski, Head of Engineering, EMEA. The new Krakow facility will enable SignalFx to accelerate product development and provide broader global support for its customers. “We were naturally attracted to Krakow not only because of its strong existing talent pool of world-class engineers but also its proximity to recent graduates from the city’s many universities,” said Leonid Igolnik, EVP Engineering for SignalFx. “We have an immediate need for engineers to become a core part of our company working side-by-side with our Silicon Valley and Research Triangle Park teams. With a global client
HL7 and SNOMED International Announce Agreement for Free Set of Terms for Use with International Patient Summary14.2.2019 15:00:00 | Pressemelding
Orlando, Fl., Feb. 14, 2019 (GLOBE NEWSWIRE) -- SNOMED International and Health Level Seven International (HL7) announce today the formalization of a license agreement in which a relevant ‘Free for Use’ Set of SNOMED CT coded concepts will be used within the HL7 International Patient Summary (IPS). Health Level Seven International (HL7) is a not-for-profit, ANSI-accredited standards developing organization dedicated to providing a comprehensive framework and related standards for the exchange, integration, sharing and retrieval of electronic health information that supports clinical practice and the management, delivery and evaluation of health services. SNOMED International is a not-for-profit, member-owned and driven international organization charged with maintaining and releasing the SNOMED CT clinical terminology product; the world’s most comprehensive clinical terminology. Presently comprised of 38 Member countries globally, SNOMED International supports the role that structured