Why are Trusteer allowed to hack into the botnet c&c servers?
I would have thought that would be contrary to the Computer Misuse Act, and yet they just hand over evidence of them gaining unauthorised access.
(1) A person is guilty of an offence if—
(a) he causes a computer to perform any function with intent to secure access to any program or data held in any computer;
(b) the access he intends to secure is unauthorised; and
(c) he knows at the time when he causes the computer to perform the function that that is the case.
I'm sure they secured access to data held on the c&c server, the botnet controllers didn't authorise the access, and that they were aware that the botnet controllers didn't authorise access.
OK, so in this case it's probably not in the public interest to prosecute, but it surely can't be good to say "hey, its ok to do bad things as long as you do it to bad people".