In April of 2021, the FBI executed a search warrant upon a series of “Certain Microsoft Exchange Servers Infected with Web Shells.” This warrant was different from typical ones, however: it authorized the FBI to not only find and copy the malware instances, but to delete them entirely from the servers. These actions were undertaken in the ongoing battle against state-sponsored malicious actors but have come to be seen as unprecedented. In this session, information security legal veterans will review why the U.S. government took this action, whether it was legally justified, and why your organization might be on the receiving end of such a warrant.
Understand the circumstances that prompted this new tactic.
Evaluate the scope of the search warrant and underlying affidavit.
Determine what legal recourse your organization may have in such a case.