Investigations
This chart depicts connections made to three computers that were targeted as part of a botnet that was using a web based control mechanism. Our analysis clearly shows eight IP addresses that connected to more than one of the three victim servers. Our subsequent work with law enforcement officers revealed that the same group of criminals were responsible for all eight IP addresses and arrests were made.
This chart depicts connections to servers that were involved in crime. Our partners in law enforcement wanted help to identify who was responsible for these computers. This chart, at the intersection of the red lines, identifies one IP address that connected to all five servers.
Our investigations wing is staffed by ex-law enforcement officers in several regions of the world including the US, Europe and Asia. We work in close partnership with both police and industry on reactive cases to identify who is committing crime on the internet. We assist their investigative efforts with actionable and timely intelligence that supports their enquiries.
Our work is varied but we typically assist on malware related enquiries of all descriptions as well as unauthorized access to, and attacks on, computer systems. Our work also includes traditional crimes such as extortion that use the internet as a new means of delivery.
We also engage with our industry partners regarding many proactive enquiries into the most complex and pressing criminal enterprises online. These cases are then referred to law enforcement in the region where the offender resides with a view to arrests being made where possible.
We can be contacted at investigations@cymru.com
