Security - Side Room (Tue, 16:00)
- Welcome
- Scribe, Chat, Stenography
- MeetEcho, Mic & Chat Etiquette
- Code of Conduct
- Ratings Where Appropriate
- Approve Minutes from RIPE 91
- New Meeting System - Pretalx
- Finalise agenda
Presentation of the LEA report 2025 and the implementation of eEvidence regulation by the RIPE NCC
This 10-minute report will offer a summary of conclusions of the 4-h working session on
residential proxies that the Global Cyber Alliance will host on May 18, as a parallel event of RIPE
92. The session will focus on the growing challenge of “infecting infrastructure”—compromised
devices, abused services, and proxy endpoints embedded within legitimate networks that
enable large-scale cyberattacks.
Building on prior similar workshops on actionable data and collective defense, the discussion
wil…
How ASN’s identified facilitating copyright infringement are commonly associated with other criminal activity.
In October 2025, Nokia Deepfield observed a 33 Tbps DDoS attack against a gaming provider. Terabit-scale attacks are now daily. The botnets behind them no longer scan for exposed IoT devices; they recruit from residential proxy networks with over 100 million consumer endpoints.
Your subscribers bought a €30 streaming box to cut the cord; what they got was a proxy node. Budget Android TV devices ship with proxy software pre-installed, and botnet operators exploit it. They route a request to 0.0.…
Internet-wide scanning services are widely used for attack surface discovery across organizations and the Internet. Enterprises, government agencies, and researchers rely on these tools to assess risks to Internet-facing infrastructure. However, their reliability and trustworthiness remain largely unexamined. This work addresses this gap by comparing results from three commercial scanners – Shodan, ONYPHE, and LeakIX – with findings from our independent experiments using verified Nuclei templat…