I attended very interesting SecureWorks client session in London today. Their CTU unit's Don Smith presented past and current security threats and prevailing vulnerabilities.
One thing struck me, as it adds to my arguments about lack of accountability on the Internet. Apparently, when China government started requiring proof of identity when registering DNS domains, a number of malicious domains registered in China dropped significantly, and moved Russia. So cyber criminal really do not like their identity to be exposed. Yet another argument for Trusted identity assurance.
Will now be working on the paper even more. :)