German Law Enforcement Officials Receive 2017 M3AAWG J.D. Falk Award for Initiating Global Takedown of Avalanche Malware
TORONTO, Oct. 04, 2017 (GLOBE NEWSWIRE) -- M3AAWG honored two German law enforcement officials today for their work in developing the global public/private collaboration that shutdown a massive malware offensive infecting computers in 189 countries and costing victims over $6 million in ransomware payments. Lower Saxony Chief Police Inspector Jörn Bisping and Senior Prosecutor Frank Lange received the 2017 M3AAWG J.D. Falk Award from the Messaging, Malware and Mobile Anti-Abuse Working group for spearheading worldwide efforts to dismantle the criminalized Avalanche platform.
A video accompanying this announcement is available at http://www.globenewswire.com/NewsRoom/AttachmentNg/e536b838-7da6-4b77-8a95-c5d36f2d5a62
The global cooperative efforts initiated by the German police and prosecutor's office resulted in eight arrests, 500 court orders, 37 onsite searches and 39 servers seized worldwide. Over 800,000 domains were seized, blocked or had their traffic diverted to a safe server rather than one controlled by criminals - a process known as sinkholing - making it the largest law enforcement operation to redirect malicious domains to date.
"There was unprecedented cooperation worldwide, including registries in Russia and China taking down malicious domains, and support from smaller countries with lesser-known domains. We worked out some of the processes for collaborating better, and future takedowns and activities against cybercriminals will move even faster," Bisping said in discussing the award.
A massive and complex criminal platform, Avalanche was used to deploy several attack vectors. Bots on the Avalanche network could determine if the targeted victim was accessing online banking and, if so, would plant key loggers and other malware on these systems to steal the user's login credentials. Other users would be targeted with ransomware malware. The platform also was used to recruit money laundering "mules" with a convoluted scheme to move stolen funds and ransom out of the country of origin by diverting payments between contracted sources.
In announcing the award at the M3AAWG four-day meeting in Toronto, Canada, the organization's Chairman of the Board Severin Walker said, "Global action is the only way to protect our local citizens. It's our professional responsibility to take the initiative in identifying major threats and then reach out to the international community to help confront them. Chief Inspector Bisping and Senior Prosecutor Lange did just this and millions of end-users are much safer now and have benefited from their dedication."
Five Years of Meticulously Detailed Investigation
The work behind the November 30, 2016 global Avalanche takedown started five years earlier when Bisping, with the Lower Saxony Police in Luneburg, began investigating a single cyberattack that appeared to be responsible for 200 local ransomware cases. In 2013, Lange, a senior prosecutor with the Public Prosecutor's Office in Verden, escalated the investigation to include more than 6,000 similar attacks throughout Germany. As the global scope and complexity of the Avalanche platform became known, they reached out to cybercrime experts such as the German Federal Office for Information Security (BSI) and the Fraunhofer-Institut für Kommunikation, Informationsverarbeitung und Ergonomie (FKIE), which eventually analyzed over 130 TB of captured data to identify the botnet server structure.
Lange said, "We realized through reverse engineering and other detailed analysis that Avalanche was more than just a botnet or a network running a few types of malware; it was a complete infrastructure and it would be impossible to stop without the help of other countries. By this time, we were in a position to invite the international community to work with us on three goals: to take down the servers, issue arrest warrants to those running them, and sinkhole all the families of malware we identified on the platform."
In July of 2015, German police officials asked the U.S. Federal Bureau of Investigation for assistance. This eventually led to the international takedown in late 2016 that diverted traffic headed to the known malicious domains to the collaboration team's servers and to the arrests. The investigation and the subsequent operation also involved the European police agency Europol, the European Union's Judicial Cooperation Unit or Eurojust, the U.S. Department of Justice, cybersecurity organizations such as Shadowserver, and investigators and prosecutors in more than 40 countries.
The J.D. Falk Award recognizes a significant achievement that protects end-users and the people working behind the scenes to make a better online world. The 2017 award was announced at the M3AAWG 41stGeneral Meeting in Toronto, Canada, with over 300 cybersecurity participants from around the world at the Oct. 3-5 event. M3AAWG also hosted UCENet (previously known as the London Action Plan) during the week. The M3AAWG 42nd General Meeting will be February 19-22, 2018 in San Francisco, USA.
About the Messaging, Malware and Mobile Anti-Abuse Working Group (M 3 AAWG)
The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) is where the industry comes together to work against bots, malware, spam, viruses, denial-of-service attacks and other online exploitation. M3AAWG (www.m3aawg.org) members represent more than one billion mailboxes from some of the largest network operators worldwide. It leverages the depth and experience of its global membership to tackle abuse on existing networks and new emerging services through technology, collaboration and public policy. It also works to educate global policy makers on the technical and operational issues related to online abuse and messaging. Headquartered in San Francisco, Calif., M3AAWG is driven by market needs and supported by major network operators and messaging providers.
Media Contact: Linda Marcus, APR, +1-949-887-8887, LMarcus@astra.cc, Astra Communications
M3AAWG Board of Directors: AT&T; CenturyLink; Cloudmark, Inc.; Comcast; dotmailer; Endurance International Group; Facebook; Google; LinkedIn; Mailchimp; Microsoft Corp.; Oath (Yahoo and AOL); Orange; Rackspace; Return Path; SendGrid, Inc.; Vade Secure.
M3AAWG Full Members: 1&1 Internet AG; Adobe Systems Inc.; Agora, Inc.; AOL; Campaign Monitor Pty.; Cisco Systems, Inc.; CloudFlare; Dyn; Exact Target, Inc.; IBM; iContact; Intel Security; Internet Initiative Japan (IIJ); Liberty Global; Listrak; Litmus; Mimecast; Nominum, Inc.; Oracle Marketing Cloud; OVH; PayPal; Proofpoint; Spamhaus; Sparkpost; Sprint; Symantec; and USAA.
A complete member list is available at http://www.m3aawg.org/about/roster.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Messaging Anti-Abuse Working Group (M3AAWG) via Globenewswire
Om Nasdaq GlobeNewswire
One Liberty Plaza - 165 Broadway
NY 10006 New York
+1 212 401 8700http://www.nasdaqomx.com
NASDAQ (NASDAQ: NDAQ) is a leading provider of trading, exchange technology, information and public company services across six continents.
Følg saker fra Nasdaq GlobeNewswire
Registrer deg med din epostadresse under for å få de nyeste sakene fra Nasdaq GlobeNewswire på epost fortløpende. Du kan melde deg av når som helst.
Siste saker fra Nasdaq GlobeNewswire
SD-WAN Market Leader Aryaka Further Expands UK and EMEA Market Reach with Intergence Partnership21.2.2018 16:01 | Pressemelding
Partnership Enables More UK and EMEA Enterprises to Adopt Global SD-WAN as-a-Service LONDON, Feb. 21, 2018 (GLOBE NEWSWIRE) -- Aryaka®, the leading global SD-WAN provider, today announced that Cambridge, UK-based Intergence will deploy Aryaka's global SD-WAN solution to enhance global connectivity and application performance for its enterprise customers with offices in the UK and Europe. Partnering with Aryaka strengthens Intergence's infrastructure services proposition for its global enterprise customers. Intergence comprises a team of IT infrastructure experts that help organizations realize their digital transformation objectives. Formed in 2003, the company uses innovative technologies like its Stratiam(TM) solution to provide CIOs with insights about IT performance and the customer's digital experiences, and to simplify complex IT problems. Intergence's infrastructure services provide IT leaders with greater flexibility, agility, and cost efficiency. The partnership will enable In
TrueCommerce Dynamics 365 Solution Featured on Microsoft AppSource21.2.2018 16:00 | Pressemelding
TrueCommerce Solution Delivers Powerful Supply Chain Integration Capabilities to Dynamics 365 Community PITTSBURGH, Feb. 21, 2018 (GLOBE NEWSWIRE) -- TrueCommerce, a global provider of trading partner connectivity and integration solutions, has announced today that its Microsoft Dynamics 365 solution is available on Microsoft AppSource. Built exclusively for and within the native Dynamics 365 platform, the embedded solution connects directly with TrueCommerce's global commerce network, offering immediate access to more than 92,000 pre-connected retailers, marketplaces, distributors, vendors and logistics providers. "Our solution for Dynamics 365 offers a multi-company, multi-deployment architecture that scales to support complex enterprise requirements," said TrueCommerce president Ross Elliott. "We are excited to be selected as one of the few EDI solutions to be featured on Microsoft AppSource, recognition of having achieved Microsoft's highest standards for quality and reliability fo
Announcing North America's Most Advanced Radio Access Network Solution by GCI in Collaboration with Altiostar21.2.2018 15:00 | Pressemelding
ANCHORAGE, Alaska, Feb. 21, 2018 (GLOBE NEWSWIRE) -- GCI, Alaska's largest telecommunications provider announced today that it has selected Altiostar to supply virtualized RAN (vRAN) technology to support GCI's LTE-Advanced network deployment and to lay the foundation for 5G and IoT. The technology will allow GCI to expand network coverage and improve capacity, and thus enhance end-user experience. Over the last 12 months GCI has been conducting field trials in Anchorage and Fairbanks with this solution from Altiostar, and this contract award is the result of this validation of the vRAN technology. Altiostar will introduce its LTE-Advanced technologies such as 4x4 MIMO and Multi-band Carrier Aggregation to significantly enhance end user experience for data applications and better voice quality using Voice over LTE (VoLTE). LTE 4x4 MIMO enables better mobile broadband coverage and data throughput for GCI subscribers, and increased spectral efficiency for GCI. GCI customers will benefit
Colliers International Named to IAOP® Global Outsourcing 100 List for 13th Consecutive Year21.2.2018 15:00 | Pressemelding
International Association of Outsourcing Professionals® Honors Colliers in Its Annual Listing of the World's Best Outsourcing Service Providers TORONTO, Feb. 21, 2018 (GLOBE NEWSWIRE) -- Leading global commercial real estate services firm Colliers International Group Inc. (NASDAQ:CIGI) (TSX:CIGI) is pleased to announce that it has again been selected for The 2018 Global Outsourcing 100 list by IAOP®, an honor the company has earned for 13 straight years, more than any other real estate services provider. Colliers has been named to the list each year since its inception. Colliers is committed to leadership in the global outsourcing industry and has a proven track-record in the space. The company's outstanding growth continues through a focus on maintaining the most collaborative and creative culture in the industry, allowing clients to accelerate their success by sharing its market-leading expertise. "We are honored to again receive this prestigious recognition from IAOP," said Dylan Ta
New cyber-risk conference coming to Bermuda in 201821.2.2018 14:44 | Pressemelding
HAMILTON, Bermuda, Feb. 21, 2018 (GLOBE NEWSWIRE) -- A new Bermudian edition of a successful North American cyber-risk conference will be held later this year, the Bermuda Business Development Agency (BDA) has announced. The inaugural International Cyber Risk Management Conference (ICRMC) Bermuda, presented by Canada's MSA Research Inc, will take place December 6-7 at the Hamilton Princess & Beach Club, following a BDA invitation to bring the event to the island. ICRMC Bermuda will be designed for corporate risk managers, corporate counsel, auditors, CISOs, CSOs, and CTOs, governance and claims professionals, insurers, reinsurers, insurance brokers and service providers. The BDA will be signature sponsor of the two-day conference that follows the company's popular Toronto event, happening April 11-12. "We are proud to bring ICRMC to Bermuda, the 'World's Risk Capital,' where we, with the support of a stellar steering committee, will focus on cyber risk with an emphasis on re/insurance
Cisco 2018 Annual Cybersecurity Report Reveals Security Leaders Rely on and Invest in Automation, Machine Learning and Artificial Intelligence to Defend Against Threats21.2.2018 14:00 | Pressemelding
Findings show 39 percent of organizations are reliant on automation, 34 percent are reliant on machine learning, 32 percent are highly reliant on AI SAN JOSE, Calif., Feb. 21, 2018 (GLOBE NEWSWIRE) -- Malware sophistication is increasing as adversaries begin to weaponize cloud services and evade detection through encryption, used as a tool to conceal command-and-control activity. To reduce adversaries' time to operate, security professionals said they will increasingly leverage and spend more on tools that use AI and machine learning, reported in the 11th Cisco® 2018 Annual Cybersecurity Report (ACR). While encryption is meant to enhance security, the expanded volume of encrypted web traffic (50 percent as of October 2017) - both legitimate and malicious - has created more challenges for defenders trying to identify and monitor potential threats. Cisco threat researchers observed more than a threefold increase in encrypted network communication used by inspected malware samples over a
I vårt presserom finner du alle våre siste saker, kontaktpersoner, bilder, dokumenter og annen relevant informasjon om oss.Besøk vårt presserom