Jean-Ian Boutin

Jean-Ian Boutin

Director of Threat Research


Education? B. Eng. Electical Engineering / M. Eng. Computer Engineering

Highlights of your career? My career highlight at ESET was able to present research I conducted at conferences such as Virus Bulletin and ZeroNights.

Position and history at ESET? I joined ESET in 2011. I am a malware researcher in the Security Intelligence program.

What malware do you hate the most? Win32/SpyEye. It was the first investigation I did when I joined ESET and, while it was a good learning experience, I still resent it ;)

Favorite activities? I love playing with my kids, cycling, jogging and playing the piano.

What is your golden rule for cyberspace? Be paranoid enough.

When did you get your first computer and what kind was it? My dad got me my first computer – a Commodore-64 – in 1988.

Favorite computer game/activity? My favorite computer game is the EA NHL series.


32 articles by Jean-Ian Boutin

ESET research

Buhtrap group uses zero-day in latest espionage campaigns

Buhtrap group uses zero-day in latest espionage campaigns

ESET research

Buhtrap group uses zero-day in latest espionage campaigns

ESET research reveals notorious crime group also conducting espionage campaigns for the past five years

Jean-Ian Boutin11 Jul 20197 min. read


ESET research

3ve – Major online ad fraud operation disrupted

3ve – Major online ad fraud operation disrupted

ESET research

3ve – Major online ad fraud operation disrupted

International law enforcement swoops on fake ad viewing outfit

Jean-Ian Boutin27 Nov 20187 min. read


ESET research

ESET takes part in global operation to disrupt Gamarue

ESET takes part in global operation to disrupt Gamarue

ESET research

ESET takes part in global operation to disrupt Gamarue

Wauchos is an extensible bot that allows its owner to create and use custom plugins. However, there are some plugins that are widely available and that are used by many different botnets.

Jean-Ian Boutin04 Dec 201710 min. read


ESET research

Turla’s watering hole campaign: An updated Firefox extension abusing Instagram

Turla’s watering hole campaign: An updated Firefox extension abusing Instagram

ESET research

Turla’s watering hole campaign: An updated Firefox extension abusing Instagram

The Turla espionage group is still using watering hole techniques to redirect potentially interesting victims to their C&C infrastructure.

Jean-Ian Boutin06 Jun 20178 min. read


ESET Research

RTM: Stealthy group targeting remote banking system

RTM: Stealthy group targeting remote banking system

ESET Research

RTM: Stealthy group targeting remote banking system

Today, ESET has released a white paper on RTM, a cybercrime group that has been relentlessly targeting businesses in Russia and neighboring countries.

Jean-Ian Boutin21 Feb 20172 min. read


ESET research

Modern attacks on Russian financial institutions

Modern attacks on Russian financial institutions

ESET research

Modern attacks on Russian financial institutions

ESET's Anton Cherepanov Jean-Ian Boutin discuss their paper, titled Modern Attacks on Russian Financial Institutions, which was published earlier this year.

Anton Cherepanov and Jean-Ian Boutin12 Dec 20164 min. read


ESET Research

Avalanche takedown: Check if you are safe

Avalanche takedown: Check if you are safe

ESET Research

Avalanche takedown: Check if you are safe

Earlier this week coordinated law enforcement action took down the Avalanche fast-flux network. ESET has been assisting in the cleanup.

Jean-Ian Boutin01 Dec 20162 min. read


ESET research

News from the Dorkside: Dorkbot botnet disrupted

News from the Dorkside: Dorkbot botnet disrupted

ESET research

News from the Dorkside: Dorkbot botnet disrupted

Law enforcement agencies from around the globe, aided by Microsoft security researchers, today announced the disruption of one of the most widely distributed malware families – Win32/Dorkbot.

Jean-Ian Boutin03 Dec 20155 min. read


ESET research

Operation Buhtrap malware distributed via ammyy.com

Operation Buhtrap malware distributed via ammyy.com

ESET research

Operation Buhtrap malware distributed via ammyy.com

The free version of Ammyy's remote administrator software were being served a bundle that contained an NSIS installer used by the gang behind Operation Buhtrap.

Jean-Ian Boutin11 Nov 20153 min. read