Page 49 - Cyber Warnings
P. 49
https://www.justice.gov/usao-ndga/pr/two-major-international-hackers-who-developed-spyeye-
malware-get-over-24-years-combined
In efforts to protect others from this threat since its initial release, Damballa's Threat Research
team has collected and analyzed vast amounts of data about the use of SpyEye in malware
campaigns and reverse engineered new versions as they were made available by the author.
We applied those findings tactically in protecting Damballa's customers, but also strategically in
efforts aimed at eventual threat extermination.
Using this intelligence, Damballa's Threat Research team was able to help pinpoint the author
of SpyEye and track the activities of top SpyEye operators throughout the cybercriminal
underground, including the infamous "dark0de" malware and hacking forum taken down by law
enforcement in July 2015.
Too often, threat disruption is less than permanent. Damballa's commitment extended well
beyond the arrests of the SpyEye co-conspirators, and members of the Threat Research team
continued to consult with law enforcement on technical arguments throughout the prosecution
and eventual sentencing.
https://www.damballa.com/spyeye-sentencing/
About the Author
Don Jackson is a senior threat researcher at Damballa, the experts
in network security monitoring for advanced threats. Jackson brings more
than 25 years of experience in the information security sector to this role,
where he is responsible for tracking threat actors engaged in cyber
espionage, APTs, and nation state attacks, and enumerating their changing
tactics, techniques, and procedures while tracking the actors network
infrastructure.
Most recently, Jackson was the Director of Threat Intelligence for PhishLabs
in their Research, Analysis and Intelligence Division. Before joining PhishLabs, Jackson was a
Senior Security Researcher for the Counter Threat Unit at Dell Secure Works, where he
executed advanced security research and development efforts and lead threat intelligence
operations.
Jackson holds his CISSP (Certified Information Systems Security Professional) certification, and
is a vetted and cleared member of the FBI InfraGard program (a partnership with private
industry to protect critical national infrastructure), the U.S. Secret Service Electronic Crimes
Task Force (ECTF), and the Georgia Internet Crimes Against Children (ICAC) Task Force.
Additionally, he has been trained and certified by the Georgia Bureau of Investigation as a
Children's Cyber Safety presenter and is a State of Georgia P.O.S.T. certified law enforcement
officer.
49 Cyber Warnings E-Magazine – May 2016 Edition
Copyright © Cyber Defense Magazine, All rights reserved worldwide
