|
Title: Incident Reporting Post by: chrisbdaemon on October 20, 2008, 11:37:31 AM Hello, I was wondering what the steps would be once you discover a botnet. In the USA is there an agency to report it to that would actually make an effort to investigate and pursue to botmaster or is it more of the kind of thing that gets reported, entered into statistics and forgotten about?
Title: Re: Incident Reporting Post by: LSOChris on October 20, 2008, 01:22:44 PM probably the latter... but the US CERT might be a place to start
Title: Re: Incident Reporting Post by: geekyone on October 20, 2008, 04:21:10 PM http://www.shadowserver.org (http://www.shadowserver.org) This organization is a good place to start. It is run by volunteer Info Sec specialists. They track and analyze bot nets. They also coordinate with the proper agencies, US and International, to get the bot nets shutdown when they have gathered enough information.
Title: Re: Incident Reporting Post by: timmedin on February 19, 2009, 09:05:43 AM The FBI had operation Bot-Roast. Googling that and following the links took me from the FBI site to http://www.ic3.gov/
Might want to report them there. Title: Re: Incident Reporting Post by: Andrew Waite on February 21, 2009, 07:51:16 AM Might be worth passing the info to the SANs Internet Storm Centre (http://isc.sans.org/). If they aren't able to look direct they should be able to put you in contact with the right people.
Powered by SMF 1.1.18 |
SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com |