The Wombat Project: Recent Developments In Internet Threats Analysis presented at BruCON 2010

by Andreas Moser (International Secure System Lab), Olivier Thonnard (Symantec ),

Tags: Security Web Others

Summary : In the recent years, many security experts have acknowledged the fact that the cyber-crime scene becomes increasingly organized and more consolidated. Even though there are some plausible indicators about the origins, causes, and consequences of these new malicious activities observed in the Internet, many questions remain regarding the attribution of the attacks and the organization of cybercrime.

Andreas Moser: Andreas Moser is an IT Security Researcher at the International Secure System Lab at the Vienna Technical University, Austria. He obtained a PhD in Computer Security and his main research topics are malicious code and underground economy infrastructure analysis. Currently he is participating in the WOMBAT (Worldwide Observatory of Malicious Behaviors and Attack Threats) project, where he implemented a system to track down malicious networks on the Internet.

Olivier Thonnard: Olivier Thonnard was born in Brussels, Belgium, in May 1975. He graduated as an engineer in Telecommunications from the Royal Military Academy (Belgium). He also holds a Master in Applied Computer Science from the Vrije Universiteit Brussel (Belgium). In March 2010, he completed a PhD in computer security at EURECOM (Sophia Antipolis, France) under the supervision of Marc Dacier (Symantec Research), with a focus on attack attribution in cyberspace. As a military Officer, he is teaching at the Polytechnic Faculty of the Royal Military Academy, where he is involved in several courses related to computer and network security. His current research activities are closely related to the global analysis of Internet threats. In this context, he is actively participating in the WOMBAT project (Worldwide Observatory of Malicious Behaviors and Attack Threats), an EC-funded project started in 2008 and involving several partners from the academic and industrial world (