Analysis of TDSS botnet (via @dckovar)- bit.ly/TGfsMt [Good thing researchers in Hong Kong. This is a USC 1030 violation in USA.]

@hal_pomeranz Going to have to look up USC 1030 and why it applies here. Thank you.

@dckovar "Unauthorized access to protected computer"-- USC 1030 is the "Computer Fraud and Abuse Act"

@hal_pomeranz @dckovar maybe arguable a foreign based bot controller, arguably a hostile & criminal instrument, not a protected computer?

@randomuserid @dckovar "Protected computer" as interpreted by US courts has been any Internet connected device, even if victim is criminal.

@hal_pomeranz @dckovar so much for my idea then. Wonder of a bot herder could prosecute an American researcher who hacked into c2 system..

@randomuserid @dckovar They could, but they'd have to show up in US court. Doubtless there would be Law Enforcement waiting for them.

@hal_pomeranz @dckovar no doubt. I wonder if security teams could argue "provider protection" for hacking c2 in order to clean up infections