Taking the Fight to the Criminals

Presented at ToorCon San Diego 13 (2011), Oct. 8, 2011, noon (50 minutes)

The ongoing struggle against online crime has drastically risen over the past years but how do we fight it? Do we fight it with more hardware and more people or do we turn to something else? We use intelligence and offensive security to take the fight to the cyber criminals. Our presentation will introduce BOB and take you through the work he does to gather intelligence on criminals and to track them down. We will discuss how Google, OSINT, and a little bit of luck can help reveal past history and remove the shadow around the criminal. We will profile three cyber criminals and reveal details of who they are, where they live, pictures of them, what they like to do during their free time, and much more. We will then propose our thoughts on how to strike back against the criminals.


  • Kevin Stevens
    Kevin Stevens is a Senior Threat Researcher with the Trend Micro Forward Looking Threat Research Group. He has five years of experience in the security field and over 10 years of experience in IT. Kevin has worked for such companies as SecureWorks, EMC, and CNN. His main areas of expertise include packet analysis, malware analysis, vulnerability research, and intelligence gathering. He is a member of the CYBER SECURITY Forum Initiative (CSFI), Cyber Intelligence Network, and the Digital Forensics Association (DFA). He has also been a member of InfraGard since 2006.
  • Loucif Kharouni
    Loucif Kharouni is a Senior Threat Researcher with Trend Micro Forward Looking Threat Research Group. He has been working for Trend Micro for the past 10 years and began his career as a support engineer in France. After few years, Loucif moved to the EMEA Regional TrendLabs as a virus support engineer to finally join the Forward Looking Threat Research Group. His main areas of expertise include network protocols, Trend Micro Products Expert, packet analysis, malware analysis and intelligence gathering.

Similar Presentations: