This webcast is a high level summary of the Elastic Botnet Report released by Novetta June 11, 2015. The report details exploits of an ElasticSearch vulnerability to create distributed denial-of-service (DDoS) botnet infrastructures using the Elknot and BillGates DDoS malware families, and includes:
- An overview of the vulnerability
- Specifics about the threat actors
- Analysis of the malware functionality
- Remediation steps to help detect and remove infections.
Learn more about the Elastic Botnet Report:
Novetta Exposes Malware Attackers’ Full Capabilities (Press Release)
Greg Sinclair is the Director of Malware Research at Novetta. Greg is the lead malware analyst at Novetta for on-going operations and has developed new techniques and technologies to aid in the reverse engineering of malware samples as well as developed systems, such as Delilah, for the collection of intelligence from malware families. Prior to Novetta, Greg worked as a reverse engineer for six years at Verisign’s iDefense where he specified in APT related threats along with other more advanced malware threats such as peer-to-peer malware and VM packed malware. His primary research interests focus on developing advanced reverse engineering technologies for both malware and non-malware purposes.