Webroot Threat Blog

Marco Giuliani, Threat Research Analyst

Marco Giuliani has six years of experience in rootkit analysis and reverse engineering. He has discovered and blogged about many different new and prevalent rootkit threats, such as Mebroot, Popureb, ZeroAccess, Srzibi, Rustock, Gromozon. Giuliani also develops anti-rootkit engines and tools, and spends most of his time at the forefront of antirootkit research. He is based in Perugia, Italy.

Marco has been at the forefront of anti-rootkit research for a number of years, discovering and writing detailed analyses of some of the most damaging rootkits in the wild. His work has been so successful that he’s attracted the attention of rootkit creators, who have, from time to time, targeted him personally through code embedded in their malware.

Jacques Erasmus, Chief Information Security Officer

Jacques has more than a decade of technical expertise, including nine years leading malware detection efforts at Webroot and Prevx, which was acquired by Webroot in 2010. While at Prevx he led incident response and PCI-DSS activities for many large companies worldwide and acquired various certifications, most notably CISSP and CISM certifications. Jacques was named “Young IT Professional of the Year” in 2009 by the British Computer Society.

Prior to Webroot, Jacques served as a senior-level consultant for Sun Microsystems where he advised on server ranges, security and backup infrastructure and he also did third-party consultant performing penetration testing for a number of South Africa’s largest companies.

At Webroot he is a blog contributor and is responsible for managing risks related to Webroot’s information security, business continuity planning, crisis management, compliance and privacy.

Armando Orozco, Sr. Threat Research Analyst

Armando is a malware researcher for Webroot and the principal researcher for the company’s mobile security team. As a member of the Threat Research team, he analyzes malware specifically targeting Android, iOS, and other mobile operating systems, and Windows on PCs. He also contributes to the Webroot Threat Blog, writing about breaking news in the mobile security landscape and various threats targeting mobile devices.

Prior to joining Webroot Orozco worked as Threat Researcher for PC Tools. Armando is based out of the Webroot headquarters in Broomfield, CO.

Michael Johnson, Threat Research Analyst

Based out of Atlanta, GA, Mike has been tracking and collecting malware and malicious URLs for over 6 years. He started researching malware as a hobby in 2005, and then joined the Prevx malware research team in 2009. He has been a member of the Webroot Threat Research team since December 2010.

With extensive knowledge researching malware samples, he works closely with product engineers and developers to convert his research findings into usable content so it can be integrated into the products so users are protected. He is also well versed in the removal of malware and has worked to troubleshoot programming issues with several antivirus products while at Prevx.

Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering and cybercrime incidence response. He’s been an active security blogger since 2007, maintaining a popular security blog on a daily basis. More details on Dancho’s current and past affiliations can be found in his LinkedIn Profile. You can also follow him on  Twitter.