Roger's Security Blog

As Chief Security Advisor of Microsoft EMEA - lets share interesting security information
Tags

Browse by Tags

TechNet Blogs » Roger's Security Blog » All Tags » law enforcement
Related Posts

  • Blog Post: Results of Operation b49 (Botnet Takedown)

    rhalbheer
    On February 24th we announced the work we did on taking down Waledac – read Tim Cranton’s blog post called Cracking Down on Botnets . Now it is time to look back and try to understand what we learned so far. sudosecure traces the Waledac infections and give a good view of new infections by the bot: But...
    on 20 Mar 2010

  • Blog Post: UNODC: Open Ended Expert Group on Cybercrime

    rhalbheer
    From tomorrow on, UNDOC invited for an Open Ended Expert Group on Cybercrime in Vienna. I am really interested in seeing hoe these discussions will go. If – by any chance – you are there as well, please ping me and we will have a chat. Otherwise, I will see what I can blog about. But at least it is a...
    on 16 Jan 2011

  • Blog Post: Success against Cybercrime

    rhalbheer
    I just read this article E-crime unit arrests suspected phishing gang , which shows that we are making progress in fighting cybercrime. Very good news Roger
    on 7 Aug 2010

  • Blog Post: Analysis of the Estonian Attacks

    rhalbheer
    I just read a paper on the political analysis of the Estonian Attack. If you are interested reading my post on my other blog (as the analysis is not really technical but interesting) there you go: Analysis of the Estonian Attacks Roger
    on 21 May 2008

  • Blog Post: Armored truck robber uses Craigslist to make getaway

    rhalbheer
    This is really clever (sounds like Hollywood but it seems to be real): In a move that could be right out of a Hollywood movie, a brazen crook apparently used a Craigslist ad to hire a dozen unsuspecting decoys to help him make his getaway following a robbery outside a bank on Tuesday. He then made...
    on 5 Oct 2008

  • Blog Post: Support for Law Enforcement and COFEE

    rhalbheer
    Over the last few weeks there has been a lot of chatter about a tool we provide in a Beta version to Law Enforcement called COFEE: Computer Online Forensic Evidence Extractor. Let me give you some information on COFEE and put it into the proper context. I am personally convinced that every company...
    on 14 May 2008

  • Blog Post: What is more important: Security or Privacy?

    rhalbheer
    This is basically a very interesting and pretty fundamental question for the society. After 9/11 the US changed the way they work significantly. Just as an example: Airlines had to give the US government information about passengers flying to the US that actually violate the privacy laws in Europe. So...
    on 17 Jan 2008

  • Blog Post: Conclusion on UNODC: Open Ended Expert Group on Cybercrime

    rhalbheer
    I told you that I will attend the UNODC: Open Ended Expert Group on Cybercrime , which is now slowly coming to an end. Let me draw a few conclusions on the meeting. It was not the first UN meeting I attended and – depending on the audience – the discussion can easily result an long political debates...
    on 20 Jan 2011

  • Blog Post: Facebook Implements Microsoft’s PhotoDNA Technology

    rhalbheer
    This is actually a great development to fight Child Porn: Facebook adopts PhotoDNA and joins Microsoft and The National Center for Missing & Exploited Children to disrupt the proliferation of online child exploitation. You find the information here . Roger
    on 20 May 2011

  • Blog Post: Lottery Scams – One of the Biggest Threat to End Users

    rhalbheer
    I just want to tell you that I will retire. Yes, sure! I just won twice in a lottery. I just have to make sure that all the taxes and insurance policies are paid… You know them as well, don’t you? The mails you get to tell you that you won in a lottery (maybe from Microsoft). From what we know today...
    on 5 Nov 2008

  • Blog Post: COFEE now distributed via a NW3C as well

    rhalbheer
    COFEE is a tool available to Law Enforcement only to capture online evidence with a little training as possible. The idea behind the tool is, that there is little need for high-trained staff to be available during e.g. house searches and that a normal, much less trained officer can capture all the data...
    on 16 Oct 2009

  • Blog Post: Mandatory Keyloggers in Cyber Cafes

    rhalbheer
    It is pretty well-known that there is a high risk of keystroke loggers in Cyber Cafés. That they are declared mandatory in a country however is pretty tough stuff: http://yro.slashdot.org/firehose.pl?id=281251&op=view Roger
    on 11 Sep 2007

  • Blog Post: Nigeria: I told you they are serious

    rhalbheer
    Remember my blog post where I told you not to forget countries like Nigeria ( I was visiting Nigeria – watch out! )? They really seem to be serious. In the last few weeks we had some troubles getting hold of the head of EFCC (I will tell you more in a week) and now, we have at least some suspicion why...
    on 13 Dec 2007

  • Blog Post: Fighting Spam Internationally

    rhalbheer
    There are different ways how to deal with Spam. One is, to eat it (yes, I know it is an old joke but I still like it…) – see the " official SPAM website " J If it comes down to e-mail SPAM, the problem is different: Most of the ISPs today are using technical means (say: SPAM Filter), the users...
    on 10 Oct 2007

  • Blog Post: VeriSign to Take Down Malware Sites?

    rhalbheer
    This is actually an interesting approach: VeriSign Proposes Takedown Procedures and Malware Scanning for .Com . This leads to the discussion I have so often: What is more important? The single website or the greater good? Now, do not get me wrong: I see the risks of VeriSign taking down microsoft.com...
    on 12 Oct 2011

  • Blog Post: Why I do not like e-voting (part 3)

    rhalbheer
    It goes on and on and on: Read this one Judge Suppresses Report on Voting Machine Security Roger
    on 5 Oct 2008

  • Blog Post: Hacking Incidents 2009 – Interesting Data

    rhalbheer
    There is a project called the web hacking incident database (WHID), which collects data and statistics on web-application related security incidents. I was just looking into their report called The Web Hacking Incident Database 2009 which has some pretty interesting statistics in. In order to judge...
    on 12 Mar 2010

  • Blog Post: Raid against Piracy

    rhalbheer
    There seem to be policy organizations being serious about fighting piracy! Hungary, actually with 41% pirated software “not even that bad”, seems to be really serious. But before, let me just take those 41% up for a second: This means that 41% of the work you do is stolen. I think a significant negative...
    on 22 Jun 2010

  • Blog Post: Do we Need Special Laws?

    rhalbheer
    Well, yes we need Cybersecurity Legislation without doubt but sometimes the legislator goes too far in my opinion. I read this article this morning: Use Google Street View Maps & Serve More Time. I quote: The state legislature in the U.S. state of Louisiana has passed a law adding extra time for...
    on 2 Jun 2010

  • Blog Post: Download Pirated Copies – and you will be banned from the Internet

    rhalbheer
    This is a very tough legislation: France just agreed on a new Internet Piracy Bill. If you violate piracy laws three times, you will be banned from the Internet up to an year: http://www.webpronews.com/topnews/2009/05/12/france-approves-internet-piracy-bill Interesting approach Roger
    on 13 May 2009

  • Blog Post: What is More Important to You? Privacy or Safety?

    rhalbheer
    I want to start upfront: I do not want to take a position here. I have an opinion as a person in my cultural context but I understand that this opinion is by far not the only one which is right or wrong. This morning I read this article: FBI Drive for Encryption Backdoors Is Déjà Vu for Security Experts...
    on 29 Sep 2010

  • Blog Post: Cybercrime as a Service–Our Future?

    rhalbheer
    It is not really surprising that the criminals will leverage the economy of Cloud Computing for their illegal purposes. Especially activities, which consume a lot of processor power will be moved to the Cloud – like any other business. Some way back, there were discussions on how to leverage GPUs to...
    on 12 Jan 2011

  • Blog Post: A Detailed Analysis of an Attack – Do We Need an International Incident Sharing Database?

    rhalbheer
    I recently came across a paper called Shadows in the Cloud , which is actually a follow-up report of Tracking GhostNet: Investigating a Cyber Espionage Network , an investigation of the attacks on the office of the Dalai Lama and some governmental bodies. The report is written by two bodies who had the...
    on 21 Apr 2010

  • Blog Post: How to circumvent Privacy Laws

    rhalbheer
    As you all know, most jurisdictions allow individuals to ask for data collected by an organization (being it a company or a governmental organization). A lot of countries have Data Protection Commissioners that look into what companies and more often governments do with regards to PII (Personal Identifiable...
    on 20 Aug 2008

  • Blog Post: Special Intelligence Report on the Rustock Takedown

    rhalbheer
    As you might remember, on Match 16th Microsoft together with other industry players was successfully able to take down the Rustock botnet and thus significantly reducing the spam level. We now just published a special Intelligence Report on this botnet: Read an overview of the Win32/Rustock family of...
    on 6 Jul 2011