Overview
Syllabus
Intro
FBI Anchorage
Distributed Denial of Service (DDoS)
DDOS Attack Measurements in 2016
Booter Services
Protraf Solutions (Becomes Mirai Group)
Remaiten Group (PoodleCorp) - Qbot Variant
May 2016
Mirai Botnet
July 2016
August 2016
HostUS Extortion Ticket
Government Investigating Routernets
Virtono Abuse Complaint (C2 @ 77.81.111.243)
rd - Mirai moves C2 location
th - Remaiten group discovers new C2
th - Mirai C2 offline
th - Actions escalate
th - BGP Hijack
th-Law Enforcement move against VDOS
Mirai accelerates...
A Record Breaking Attack
Mirai Source Code Released
Investigation
Investigative Assistance
Accountability
Apply What You Have Learned Today
Questions?
Taught by
RSA Conference