6      0

(ISC)² Security Congress 2021 - Career Center & Recordings

1778648 - Yes, the FBI Really Can Remove Malware Without Your Permission

Oct 19, 2021 1:45pm ‐ Oct 19, 2021 2:45pm

Credits: None available.


In April of 2021, the FBI executed a search warrant upon a series of “Certain Microsoft Exchange Servers Infected with Web Shells.” This warrant was different from typical ones, however: it authorized the FBI to not only find and copy the malware instances, but to delete them entirely from the servers. These actions were undertaken in the ongoing battle against state-sponsored malicious actors but have come to be seen as unprecedented. In this session, information security legal veterans will review why the U.S. government took this action, whether it was legally justified, and why your organization might be on the receiving end of such a warrant.

Learning Objectives:
  • Understand the circumstances that prompted this new tactic.
  • Evaluate the scope of the search warrant and underlying affidavit.
  • Determine what legal recourse your organization may have in such a case.


Tags: Intermediate


  • 1.00 - CPE

You must be logged in and own this session in order to post comments.