Bit Defender’s Draco Team: Cybercrime Investigations

———————————————-

Overview

Bit Defender’s specialized team, known as Draco, works with law enforcement to combat cybercrime. Founded 24 years ago, the team has been involved in various investigations.

Investigations and Capabilities

• Conduct joint forensic analysis of targeted systems
• Provide technical support and analysis for investigations
• Utilize automated crawlers to index dark web sites and marketplaces

Notable Investigations

• Gandrab ransomware case (2017): Decrypting tools led to group’s shutdown due to affiliates‘ loss of trust.
• Revel (Sudinoi) ransomware group: Decryption tool stopped $1 billion from being paid; shut down the Hanza dark market.

AI and Cybercrime Evolution

• The rapid advancement of AI lowers the skill barrier for creating phishing, malware, and deepfake scams.
• AI-generated content is increasingly used for both defense and offense purposes.

link: https://www.youtube.com/watch?v=2VOFWU77CR4