GlobeNewswire

German Law Enforcement Officials Receive 2017 M3AAWG J.D. Falk Award for Initiating Global Takedown of Avalanche Malware

Dela

TORONTO, Oct. 04, 2017 (GLOBE NEWSWIRE) -- M3AAWG honored two German law enforcement officials today for their work in developing the global public/private collaboration that shutdown a massive malware offensive infecting computers in 189 countries and costing victims over $6 million in ransomware payments. Lower Saxony Chief Police Inspector Jörn Bisping and Senior Prosecutor Frank Lange received the 2017 M3AAWG J.D. Falk Award from the Messaging, Malware and Mobile Anti-Abuse Working group for spearheading worldwide efforts to dismantle the criminalized Avalanche platform.

A video accompanying this announcement is available at http://www.globenewswire.com/NewsRoom/AttachmentNg/e536b838-7da6-4b77-8a95-c5d36f2d5a62

The global cooperative efforts initiated by the German police and prosecutor's office resulted in eight arrests, 500 court orders, 37 onsite searches and 39 servers seized worldwide.  Over 800,000 domains were seized, blocked or had their traffic diverted to a safe server rather than one controlled by criminals - a process known as sinkholing - making it the largest law enforcement operation to redirect malicious domains to date. 

"There was unprecedented cooperation worldwide, including registries in Russia and China taking down malicious domains, and support from smaller countries with lesser-known domains. We worked out some of the processes for collaborating better, and future takedowns and activities against cybercriminals will move even faster," Bisping said in discussing the award.

A massive and complex criminal platform, Avalanche was used to deploy several attack vectors. Bots on the Avalanche network could determine if the targeted victim was accessing online banking and, if so, would plant key loggers and other malware on these systems to steal the user's login credentials. Other users would be targeted with ransomware malware.  The platform also was used to recruit money laundering "mules" with a convoluted scheme to move stolen funds and ransom out of the country of origin by diverting payments between contracted sources.

In announcing the award at the M3AAWG four-day meeting in Toronto, Canada, the organization's Chairman of the Board Severin Walker said, "Global action is the only way to protect our local citizens. It's our professional responsibility to take the initiative in identifying major threats and then reach out to the international community to help confront them.  Chief Inspector Bisping and Senior Prosecutor Lange did just this and millions of end-users are much safer now and have benefited from their dedication."

Five Years of Meticulously Detailed Investigation

The work behind the November 30, 2016 global Avalanche takedown started five years earlier when Bisping, with the Lower Saxony Police in Luneburg, began investigating a single cyberattack that appeared to be responsible for 200 local ransomware cases. In 2013, Lange, a senior prosecutor with the Public Prosecutor's Office in Verden, escalated the investigation to include more than 6,000 similar attacks throughout Germany. As the global scope and complexity of the Avalanche platform became known, they reached out to cybercrime experts such as the German Federal Office for Information Security (BSI) and the Fraunhofer-Institut für Kommunikation, Informationsverarbeitung und Ergonomie (FKIE), which eventually analyzed over 130 TB of captured data to identify the botnet server structure.

Lange said, "We realized through reverse engineering and other detailed analysis that Avalanche was more than just a botnet or a network running a few types of malware; it was a complete infrastructure and it would be impossible to stop without the help of other countries. By this time, we were in a position to invite the international community to work with us on three goals: to take down the servers, issue arrest warrants to those running them, and sinkhole all the families of malware we identified on the platform."

In July of 2015, German police officials asked the U.S. Federal Bureau of Investigation for assistance. This eventually led to the international takedown in late 2016 that diverted traffic headed to the known malicious domains to the collaboration team's servers and to the arrests. The investigation and the subsequent operation also involved the European police agency Europol, the European Union's Judicial Cooperation Unit or Eurojust, the U.S. Department of Justice, cybersecurity organizations such as Shadowserver, and investigators and prosecutors in more than 40 countries.

The J.D. Falk Award recognizes a significant achievement that protects end-users and the people working behind the scenes to make a better online world. The 2017 award was announced at the M3AAWG 41stGeneral Meeting in Toronto, Canada, with over 300 cybersecurity participants from around the world at the Oct. 3-5 event. M3AAWG also hosted UCENet (previously known as the London Action Plan) during the week. The M3AAWG 42nd General Meeting will be February 19-22, 2018 in San Francisco, USA.

About the Messaging, Malware and Mobile Anti-Abuse Working Group (M 3 AAWG)

The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) is where the industry comes together to work against bots, malware, spam, viruses, denial-of-service attacks and other online exploitation. M3AAWG (www.m3aawg.org) members represent more than one billion mailboxes from some of the largest network operators worldwide. It leverages the depth and experience of its global membership to tackle abuse on existing networks and new emerging services through technology, collaboration and public policy. It also works to educate global policy makers on the technical and operational issues related to online abuse and messaging. Headquartered in San Francisco, Calif., M3AAWG is driven by market needs and supported by major network operators and messaging providers.

Media Contact: Linda Marcus, APR, +1-949-887-8887, LMarcus@astra.cc, Astra Communications

M3AAWG Board of Directors: AT&T; CenturyLink; Cloudmark, Inc.; Comcast; dotmailer; Endurance International Group; Facebook; Google; LinkedIn; Mailchimp; Microsoft Corp.; Oath (Yahoo and AOL); Orange; Rackspace; Return Path; SendGrid, Inc.; Vade Secure.

M3AAWG Full Members: 1&1 Internet AG; Adobe Systems Inc.; Agora, Inc.; AOL; Campaign Monitor Pty.; Cisco Systems, Inc.; CloudFlare; Dyn; Exact Target, Inc.; IBM; iContact; Intel Security; Internet Initiative Japan (IIJ); Liberty Global; Listrak; Litmus; Mimecast; Nominum, Inc.; Oracle Marketing Cloud; OVH; PayPal; Proofpoint; Spamhaus; Sparkpost; Sprint; Symantec; and USAA.

A complete member list is available at http://www.m3aawg.org/about/roster.




This announcement is distributed by Nasdaq Corporate Solutions on behalf of Nasdaq Corporate Solutions clients.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Messaging Anti-Abuse Working Group (M3AAWG) via Globenewswire

Om

GlobeNewswire



Följ GlobeNewswire

Abonnera på våra pressmeddelanden.

Senaste pressmeddelandena från GlobeNewswire

Karolinska Development's portfolio company Modus Therapeutics completes enrollment in Phase II study with sevuparin7.1.2019 12:00Pressmeddelande

STOCKHOLM, January 7, 2019. Karolinska Development's portfolio company Modus Therapeutics announces that the patient enrollment has been completed in the Phase II study with sevuparin in patients with sickle cell disease (SCD). The results from the study is expected in mid 2019. Modus Therapeutic's randomized, double blind study contains 140 SCD-patients with Acute Vaso Occlusive Crisis (VOC). It compares intravenously administered sevuparin with placebo. The primary endpoint of the study is the demonstration of a reduced time to resolution of patient's VOC. Clincal sites across Europe and the Middle East took part in the study that was conducted in conjunction with Modus Therapeutics' co development partner Ergomed. SCD has a high unmet medical need as there are currently no approved therapies for VOCs. It is an inherited blood disorder that affects between 90,000 to 100,000 patients in the U.S. and is characterized by severely painful VOCs that lead to organ damage due to a lack of o

Karolinska Development's portfolio company Modus Therapeutics completes enrollment in Phase II study with sevuparin7.1.2019 12:00Pressmeddelande

STOCKHOLM, January 7, 2019. Karolinska Development's portfolio company Modus Therapeutics announces that the patient enrollment has been completed in the Phase II study with sevuparin in patients with sickle cell disease (SCD). The results from the study is expected in mid 2019. Modus Therapeutic's randomized, double blind study contains 140 SCD-patients with Acute Vaso Occlusive Crisis (VOC). It compares intravenously administered sevuparin with placebo. The primary endpoint of the study is the demonstration of a reduced time to resolution of patient's VOC. Clincal sites across Europe and the Middle East took part in the study that was conducted in conjunction with Modus Therapeutics' co development partner Ergomed. SCD has a high unmet medical need as there are currently no approved therapies for VOCs. It is an inherited blood disorder that affects between 90,000 to 100,000 patients in the U.S. and is characterized by severely painful VOCs that lead to organ damage due to a lack of o

Stillfront Group rekryterar ansvarig för M&A19.12.2018 12:07Pressmeddelande

PRESSMEDDELANDE 19 december, 2018 Stillfront Group rekryterar ansvarig för M&A Stillfront Group, en marknadsledare inom 'free to play' online strategispel, annonserar idag att Marina Andersson har utsetts till ansvarig för M&A och kommer att ingå i koncernledningen. Marina har närmare tjugo års erfarenhet från investment banking och M&A. Hon har omfattande erfarenhet inom strategisk och finansiell rådgivning, affärsgenerering, projektledning inom förvärv och försäljningar av företag, finansiell analys, due diligence, samt företagsvärdering. Tidigare positioner inkluderar: Director, Deloitte's Corporate Finance Advisory team, Director, ICECAPITAL Securities, Associate Partner och Investment Manager, Deseven, samt M&A Analytiker på Carnegie. Marina har två magister-examen från Stockholms universitet och Russian Herzen State Pedagogical University. "Förvärv är en viktig del av Stillfronts affärsstrategi och vi är mycket glada att rekrytera Marina Andersson. Marinas breda erfarenhet och pr

Stillfront Group announces Head of M&A19.12.2018 12:07Pressmeddelande

PRESS RELEASE December 19, 2018 Stillfront Group announces Head of M&A Stillfront Group, a market leader in 'free to play' online strategy games, today announces that Marina Andersson has been appointed as Head of M&A and will be part of the Group's management team. Marina has close to 20 years track record of investment banking and M&A. She has extensive competence within strategic and financial advisory, deal generation, buy and sell side M&A project management, financial analysis, due diligence and company valuation. Former positions include: Director at Deloitte's Corporate Finance Advisory team, Director at ICECAPITAL Securities, Associate Partner and Investment Manager at Deseven, M&A Analyst at Carnegie. She holds two Master degrees from Stockholm University and Russian Herzen State Pedagogical University. "Acquisitions are a crucial part of Stillfront's business strategy and we are very pleased with the appointment of Marina Andersson. Marina's breadth of experience and profess

Oboya tecknar ett samarbetsavtal med Gaia avseende biomaterial13.12.2018 11:41Pressmeddelande

Oboya Horticulture Industries AB (publ) ("Oboya") har tecknat ett viktigt och långsiktigt samarbetsavtal avseende miljövänligt biomaterial med Gaia Biomaterials AB ("Gaia") i Helsingborg, Sverige. Avtalet innebär att Oboya använder Gaias biomaterial för tillverkning och utveckling av miljövänliga odlingsprodukter till odlingsindustrin. Oboya har under de senaste åren arbetat aktivt med innovation, miljö- och hållbarhetsfrågor och vårt mål är att främja miljö och hållbarhet inom odlingsindustrin genom att erbjuda miljövänliga odlingsprodukter till våra kunder. Oboya anser att användningen av biomaterial kommer att vara viktigt för framgång i omställningen till en fossilfri odlingsindustri världen över. Samarbetsavtalet innebär att Oboya använder Gaias biomaterial i sin produktion och att vi genom Gaias kompetens kan utveckla nya miljövänliga odlingsprodukter. Gaias biomaterial är biologiskt nedbrytbart, komposterbart samt ger upp till 80 % lägre koldioxidutsläpp vid förbränning jämfört

Oboya signs a cooperation agreement with Gaia regarding biomaterials13.12.2018 11:41Pressmeddelande

Oboya Horticulture Industries AB (publ) ("Oboya") has signed an important and long-term cooperation agreement on environmentally friendly biomaterials with Gaia Biomaterials AB ("Gaia") in Helsingborg, Sweden. The agreement means that Oboya uses Gaias biomaterials for the production and development of environmentally friendly cultivation products for the cultivation industry. Oboya has been actively involved in innovation, environmental and sustainability issues in recent years, and our goal is to encourage environmental and sustainability in the cultivation industry by offering environmentally friendly cultivation products to our customers. Oboya believes that the use of biomaterials will be important for success in the conversion to a fossil-free cultivation industry worldwide. The cooperation agreement means that Oboya uses Gaias biomaterials in its production and that through Gaias expertise we can develop new environmentally friendly cultivation products. Gaias biomaterials are bi

I vårt pressrum kan du läsa de senaste pressmeddelandena, få tillgång till pressmaterial och hitta kontaktinformation.

Besök vårt pressrum