GlobeNewswire

German Law Enforcement Officials Receive 2017 M3AAWG J.D. Falk Award for Initiating Global Takedown of Avalanche Malware

Dela

TORONTO, Oct. 04, 2017 (GLOBE NEWSWIRE) -- M3AAWG honored two German law enforcement officials today for their work in developing the global public/private collaboration that shutdown a massive malware offensive infecting computers in 189 countries and costing victims over $6 million in ransomware payments. Lower Saxony Chief Police Inspector Jörn Bisping and Senior Prosecutor Frank Lange received the 2017 M3AAWG J.D. Falk Award from the Messaging, Malware and Mobile Anti-Abuse Working group for spearheading worldwide efforts to dismantle the criminalized Avalanche platform.

A video accompanying this announcement is available at http://www.globenewswire.com/NewsRoom/AttachmentNg/e536b838-7da6-4b77-8a95-c5d36f2d5a62

The global cooperative efforts initiated by the German police and prosecutor's office resulted in eight arrests, 500 court orders, 37 onsite searches and 39 servers seized worldwide.  Over 800,000 domains were seized, blocked or had their traffic diverted to a safe server rather than one controlled by criminals - a process known as sinkholing - making it the largest law enforcement operation to redirect malicious domains to date. 

"There was unprecedented cooperation worldwide, including registries in Russia and China taking down malicious domains, and support from smaller countries with lesser-known domains. We worked out some of the processes for collaborating better, and future takedowns and activities against cybercriminals will move even faster," Bisping said in discussing the award.

A massive and complex criminal platform, Avalanche was used to deploy several attack vectors. Bots on the Avalanche network could determine if the targeted victim was accessing online banking and, if so, would plant key loggers and other malware on these systems to steal the user's login credentials. Other users would be targeted with ransomware malware.  The platform also was used to recruit money laundering "mules" with a convoluted scheme to move stolen funds and ransom out of the country of origin by diverting payments between contracted sources.

In announcing the award at the M3AAWG four-day meeting in Toronto, Canada, the organization's Chairman of the Board Severin Walker said, "Global action is the only way to protect our local citizens. It's our professional responsibility to take the initiative in identifying major threats and then reach out to the international community to help confront them.  Chief Inspector Bisping and Senior Prosecutor Lange did just this and millions of end-users are much safer now and have benefited from their dedication."

Five Years of Meticulously Detailed Investigation

The work behind the November 30, 2016 global Avalanche takedown started five years earlier when Bisping, with the Lower Saxony Police in Luneburg, began investigating a single cyberattack that appeared to be responsible for 200 local ransomware cases. In 2013, Lange, a senior prosecutor with the Public Prosecutor's Office in Verden, escalated the investigation to include more than 6,000 similar attacks throughout Germany. As the global scope and complexity of the Avalanche platform became known, they reached out to cybercrime experts such as the German Federal Office for Information Security (BSI) and the Fraunhofer-Institut für Kommunikation, Informationsverarbeitung und Ergonomie (FKIE), which eventually analyzed over 130 TB of captured data to identify the botnet server structure.

Lange said, "We realized through reverse engineering and other detailed analysis that Avalanche was more than just a botnet or a network running a few types of malware; it was a complete infrastructure and it would be impossible to stop without the help of other countries. By this time, we were in a position to invite the international community to work with us on three goals: to take down the servers, issue arrest warrants to those running them, and sinkhole all the families of malware we identified on the platform."

In July of 2015, German police officials asked the U.S. Federal Bureau of Investigation for assistance. This eventually led to the international takedown in late 2016 that diverted traffic headed to the known malicious domains to the collaboration team's servers and to the arrests. The investigation and the subsequent operation also involved the European police agency Europol, the European Union's Judicial Cooperation Unit or Eurojust, the U.S. Department of Justice, cybersecurity organizations such as Shadowserver, and investigators and prosecutors in more than 40 countries.

The J.D. Falk Award recognizes a significant achievement that protects end-users and the people working behind the scenes to make a better online world. The 2017 award was announced at the M3AAWG 41stGeneral Meeting in Toronto, Canada, with over 300 cybersecurity participants from around the world at the Oct. 3-5 event. M3AAWG also hosted UCENet (previously known as the London Action Plan) during the week. The M3AAWG 42nd General Meeting will be February 19-22, 2018 in San Francisco, USA.

About the Messaging, Malware and Mobile Anti-Abuse Working Group (M 3 AAWG)

The Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) is where the industry comes together to work against bots, malware, spam, viruses, denial-of-service attacks and other online exploitation. M3AAWG (www.m3aawg.org) members represent more than one billion mailboxes from some of the largest network operators worldwide. It leverages the depth and experience of its global membership to tackle abuse on existing networks and new emerging services through technology, collaboration and public policy. It also works to educate global policy makers on the technical and operational issues related to online abuse and messaging. Headquartered in San Francisco, Calif., M3AAWG is driven by market needs and supported by major network operators and messaging providers.

Media Contact: Linda Marcus, APR, +1-949-887-8887, LMarcus@astra.cc, Astra Communications

M3AAWG Board of Directors: AT&T; CenturyLink; Cloudmark, Inc.; Comcast; dotmailer; Endurance International Group; Facebook; Google; LinkedIn; Mailchimp; Microsoft Corp.; Oath (Yahoo and AOL); Orange; Rackspace; Return Path; SendGrid, Inc.; Vade Secure.

M3AAWG Full Members: 1&1 Internet AG; Adobe Systems Inc.; Agora, Inc.; AOL; Campaign Monitor Pty.; Cisco Systems, Inc.; CloudFlare; Dyn; Exact Target, Inc.; IBM; iContact; Intel Security; Internet Initiative Japan (IIJ); Liberty Global; Listrak; Litmus; Mimecast; Nominum, Inc.; Oracle Marketing Cloud; OVH; PayPal; Proofpoint; Spamhaus; Sparkpost; Sprint; Symantec; and USAA.

A complete member list is available at http://www.m3aawg.org/about/roster.




This announcement is distributed by Nasdaq Corporate Solutions on behalf of Nasdaq Corporate Solutions clients.
The issuer of this announcement warrants that they are solely responsible for the content, accuracy and originality of the information contained therein.
Source: Messaging Anti-Abuse Working Group (M3AAWG) via Globenewswire

Om

GlobeNewswire



Följ GlobeNewswire

Abonnera på våra pressmeddelanden.

Senaste pressmeddelandena från GlobeNewswire

Karolinska Development's portfolio company Pharmanest changes name and signs licensing agreement15.10.2018 13:25Pressmeddelande

STOCKHOLM, October 15, 2018. Karolinska Development's portfolio company Phamanest changes its name to Palette Life Sciences. The company also announces a global licensing agreement with Nestlé Skin Health. Palette Life Sciences (former Pharmanest) has announced a licensing agreement with Nestlé Skin Health. The agreement gives Palette Life Sciences the worldwide commercialization and development rights for three products: Deflux®, Solesta® and BarrigelTM. The products are all based on the NASHATM (Non Animal Stabilized Hyaluronic Acid) technology. Palette Life Sciences will focus immediately on sales of Deflux and Solesta and will begin preparing for worldwide commercialization of Barrigel. Nestlé Skin Health will continue to manufacture the products on behalf of Palette Life Sciences. Palette Life Science will continue the development of SHACT under the name LidbreeTM. Lidbree will be submitted for European regulatory review later this year. Karolinska Development is a passive investo

Karolinska Development's portfolio company Pharmanest changes name and signs licensing agreement15.10.2018 13:25Pressmeddelande

STOCKHOLM, October 15, 2018. Karolinska Development's portfolio company Phamanest changes its name to Palette Life Sciences. The company also announces a global licensing agreement with Nestlé Skin Health. Palette Life Sciences (former Pharmanest) has announced a licensing agreement with Nestlé Skin Health. The agreement gives Palette Life Sciences the worldwide commercialization and development rights for three products: Deflux®, Solesta® and BarrigelTM. The products are all based on the NASHATM (Non Animal Stabilized Hyaluronic Acid) technology. Palette Life Sciences will focus immediately on sales of Deflux and Solesta and will begin preparing for worldwide commercialization of Barrigel. Nestlé Skin Health will continue to manufacture the products on behalf of Palette Life Sciences. Palette Life Science will continue the development of SHACT under the name LidbreeTM. Lidbree will be submitted for European regulatory review later this year. Karolinska Development is a passive investo

ICONOVO TECKNAR AVTAL MED MCMASTER UNIVERSITY AVSEENDE UTVECKLING AV VACCIN MOT TUBERKULOS15.10.2018 09:00Pressmeddelande

Det innovativa, Lundabaserade medicinteknikföretaget Iconovo AB (publ) meddelar i dag att bolaget har skrivit samarbetsavtal med McMaster University i Kanada. Avtalet avser utveckling av en torrpulverberedning av inhalerbart vaccin mot tuberkulos som ska användas i Iconovos unika engångsinhalator ICOone. Iconovo kommer att ingå i ett tvärvetenskapligt forsknings- och utvecklingsprojekt som syftar till att ta fram nästa generations virusbaserade vaccin i pulverform som är stabilt i rumstemperatur. Att kunna transportera vaccin utan krav på kylförvaring är en förutsättning för att snabbt och effektivt nå ut till de behövande. I det projekt som nu påbörjas kommer Iconovos unika engångsinhalator ICOone att användas som testplattform för att underlätta en framtida kommersialisering och storskalig tillverkning. Projektet beräknas pågå i tre år och finansieras bland annat av den kanadensiska staten (CIHR/NSERC). Tuberkulos förekommer i hela världen och är en av de tio vanligaste dödsorsakerna

Stillfront Group AB: Babil Games lanserar Arab Gamers' League4.10.2018 10:02Pressmeddelande

PRESSMEDDELANDE 4 oktober 2018 Babil Games, en del av Stillfront Group, ökar affärstillväxten och lanserar Arab Gamers' League, AGL Babil Games, ett dotterbolag till Stillfront Group, inleder partnerskap med kreativa byrån Grape Creations i Dubai och lanserar Arab Gamers' League (AGL), en ny studio som fokuserar på att lansera så kallade 'social casual games' till MENA-regionen. Babil Games kontrollerar 51% av AGL och Grape Creations övriga 49%. Babil Games är ansvarig för verksamheten och sourcing av spel medan Grape Creations ansvarar för marknadsföring och distribution. "Vi är mycket glada över vårt inledda partnerskap med Grape Creations gällande lanseringen av Arab Gamers' League. AGLs fokus är att lansera nästa generations 'social casual games' till MENA-regionen", säger MJ Fahmi, VD för Babil Games. Babil Games kommer att fortsätta att fokusera på MMO-strategispel. Antalet anställda i Babil Games har fördubblats under det senaste året och studion kommer att flytta till ett nytt

Stillfront Group AB: Babil Games launches Arab Gamers' League4.10.2018 10:02Pressmeddelande

PRESS RELEASE 4 October 2018 Babil Games, part of the Stillfront Group, accelerates business growth and launches Arab Gamers' League, AGL Babil Games, a subsidiary of Stillfront Group, is partnering with Dubai based creative agency Grape Creations to launch Arab Gamers' League (AGL), a new studio focused on bringing social casual games to the MENA-region. Babil Games controls 51% of AGL and Grape Creations the other 49%. Babil Games is head of the operations and the sourcing of the games while Grape Creations is responsible for marketing and distribution. "We are pleased to have Grape Creations as our partner for the launch of Arab Gamers League. In AGL we will focus on bringing the next generation of social casual games to the MENA region", says MJ Fahmi, CEO of Babil Games. Babil Games will continue to focus on strategy MMO games. The number of employees in Babil Games has doubled during the year and the studio will relocate to a new larger office in Amman, Jordan. "The expansion is

Hoylu AB: UNITED STATES AIR FORCE SELECTS HOYLU FOR COLLABORATION AND INNOVATION SOLUTIONS28.9.2018 08:30Pressmeddelande

Malmo, Sweden, September 28, 2018 - Hoylu, a leading enterprise collaboration company announced today that the United States Air Force has selected Hoylu Software and multiple large format HoyluWall systems as a digital workspace tool for workspace innovation and collaboration. Hoylu software will be used at multiple sites to create joined environments within the division. The order will be delivered in Q4 2018 and represents a deal value of SEK 3,670,000 in product and software revenue. The Air Force will use the system for training and education purposes, with the ability to connect users together and collaborate in real-time. The order represents a growing market for Hoylu software and services within the government sector. It is expected that Hoylu's solutions will continue to expand within this industry as innovative collaboration solutions are in demand. Hoylu's solutions and software offer new and exciting ways to learn and collaborate smarter, faster and more efficiently. Creat

I vårt pressrum kan du läsa de senaste pressmeddelandena, få tillgång till pressmaterial och hitta kontaktinformation.

Besök vårt pressrum