[nsp-sec] SWINE Con 2009 - Lyon May 5th - 7th

Lawrence Baldwin baldwinl at mynetwatchman.com
Fri May 1 08:26:01 EDT 2009 

As y'all probably know the Cymru Underground Economy conference in Lyon 
was postponed because Interpol decided to close their building to 
non-essential visitors.

As many of the presenters and attendees booked non-refundable travel 
and/or were also going to APWG afterwards many of us are STILL going to 
Lyon...so we put an alternate conference together at a new venue.

This is still an invite only, but as we should have plenty of room I see 
no reason why anyone here couldn't come if they wanted to...here's the 
agenda:

SWINE Con 2009
Symposium to Wipe InterNational Ecrime
Lyon, France
May 7th - 9th, 2009

Location:

Best Western Hotel Charlemagne.
23, Cours Charlemagne
69002 Lyon, France
+33 4 72 77 70 00


   Tuesday:
   -------
  08:00 - 09:00 Registration/Networking

  09:00 - 09:15 Introduction/Agenda Overview

   09:15 - 10:15 Unmasking Organized Electronic Crime *CONFIRMED*
    Jon Orbeton, Security Engineer, Electronic Crime & Threat Intelligence,
   PayPal


  10:15 - 11:00 Open discussion: What trends have you observed in eCrime?

  11:00 - 11:15 Break

  11:15 - 12:15 How Criminals Make Money with Google  *CONFIRMED*
    Cory Louie, Google

  12:15 - 13:15 Open discussion: *TBD*

  13:15 - 14:15 Lunch

   14:15 - 15:15 Russian Operated Botnets: their structure, methods of 
attack, economic and social effects and their impact on non-Russian 
companies
  Kimberly Zenz, iDefense  *UNCONFIRMED*


  15:00 - 16:00
    * Symantec Report on the Underground Economy - 2009 Update  *CONFIRMED*
    Dean Turner, Symantec

  16:00 - 16:10 Break

  16:10 - 17:00 Open discussion: *TBD*


  17:00  - end

  19:00 - ??:?? Evening Event/Dinner Out?

   Wednesday:
   ---------

  09:00 - Start

  09:00 - 10:00 The eCrime Bazaar *CONFIRMED*

   Lawrence Baldwin, President and Founder, myNetWatchman


  10:00 - 11:00 *TBD*

  11:00 - 11:15 Break

  11:15 - 12:15 Demonetizing botnets *CONFIRMED*
   Joe Stewart, Director of Malware Research, SecureWorks

  12:15 - 13:15 *TBD*

  13:15 - 14:15 Lunch

  14:15 - 15:00  AFP Briefing *CONFIRMED*
  Peter Sykora, National Coordinator, HTC Investigations, Aus. Federal 
Police


  15:15 - 16:15 *TBD*


  16:15 - 16:25 Break

  16:25 - 17:00 Open Discussion: *TBD*

  17:00 End

  18:00 - ??:?? SWINE Crawl - Old Town Lyon

   Thursday:
   --------

  09:00 - Start - Hands on day

  09:00 - 11:00  Zeus: God of Keyloggers *CONFIRMED*
    Gerard White, Thorsten Holz, Lawrence Baldwin
  (If possible will try to setup live Zeus demo with infected victim and 
backend server)
  As time permits, Lawrence will give a briefing on how any bank can 
detect ALL Zeus webfake (phish-like page injection)
  solely through web log analysis.

  11:00 - 13:15 PLAN A or PLAN B

  13:15 - 14:15 Lunch

  14:15 - 15:15 PLAN A or PLAN B

  15:15 - 15:30 Break

  15:30 - 16:00 What is GCSC?  *CONFIRMED*
   Ian Wilms, GCSC Calgary, Alberta (Our venue sponsor!)


  16:00 - End

PLAN A:

If we have strong LE turnout then the plan is to do some hands on 
sessions demonstrating the plethora of tools available to LE for 
researching cyber cases (e.g. passive DNS, BGP route analysis, going 
deeper then IP Whois, Javascript de-obfuscation, etc..).


PLAN B:

If the audience is mostly non-LE, then the plan is to have an Cybercrime 
"SWAT" type discussion...e.g.: discuss tactics that we can employ 
together to make a dent in Cybercrime.



  Tenative speakers: (Will Confirm on Monday)
  ------------------
  Wolfgang Weber
  Director Law Enforcement Affairs (EU)
  eBay Government Relations


   "Operation Joker"
  (Paul) Werner Dohr
  State Police Northrhine Westfalia, Germany




-- 
Lawrence Baldwin
Chief Forensics Officer/
Cybercrime Investigator
myNetWatchman.com
Alpharetta, GA
+1.678.624.0924

More information about the nsp-security mailing list