Nation & World

<< Previous   of   Next >>   ADVERTISEMENT   CONTACT THE HERALD Do you have a news tip? newstips@heraldnet.com | 425.339.3400   Published: Thursday, November 13, 2008 Big spam host is is booted off the Web The Washington Post WASHINGTON -- The volume of junk e-mail sent worldwide may have dropped drastically Wednesday after a Web-hosting firm, identified by many in the computer security community as a major host of organizations engaged in spam activity, was taken offline. McColo, a San Jose Web-hosting company that, according to computer security experts, serves as a U.S. staging ground for international firms that sell items from counterfeit pharmaceuticals to child pornography, ceased operations after Internet providers blocked Web access. SecureWorks, an Atlanta security-services provider, estimates that McColo was responsible for 75 percent of all spam sent in the United States each day. Global Crossing, a Bermuda company with U.S. operations and one of the two companies that provided Internet access to McColo, would not say why it cut off the company, but said its policy prohibits "malicious activity." Benny Ng, a director for Hurricane Electric, a California firm that served as McColo's other Internet provider, said it decided to block the firm after reading about allegations against McColo. "We shut them down," Ng said. "We looked into it a bit, saw the size and scope of the problem ... Within the hour, we had terminated all of our connections to them." A number of security researchers have published reports over the past year alleging that McColo hosts the top "botnets," or vast collections of hacked computers networked together, to blast out spam or attack others online. Joe Stewart, director of malware research for SecureWorks, said botnets such as "Mega-D" or "Srizbi," which are known to send e-mails about access to prescription drugs, have had their master servers hosted at McColo. Although security experts who have been seeking to stop McColo from allegedly hosting questionable sites are pleased to see the company lose its access, some are worried it will only make it harder to track illegal activity. "Everything will just be more spread out and harder to mitigate," Stewart said. "We rather like knowing where the bad activity is coming from, so protecting our networks is easier." READER COMMENTS Be the first to comment. You must be a registered user and verify your e-mail address to post comments to blogs or articles on HeraldNet. To register, click here. To read other terms and conditions, click here. Log out

1. Man arrested in fatal shooting of brother 2. Highway 9 crash victims memorialized 3. Taxes needed to close state's growing deficit? 4. Confrontation led to elderly man's death, police say 5. Fire sends shoppers fleeing JC Penney at Alderwood 6. Snohomish salon owner has a venture with style 7. Pearl Harbor's voices of the past 8. Vikings’ Henderson breaks leg against Cardinals 9. Boeing shares soar as 787 first flight draws near 10. New law aims to deny some felons bail 2 - Top 10 Stories Most Talked about 3 - Top 10 Stories Most Emailed

• Wildcats fall to familar foe in semis • ‘Nutcracker' times three • Road warrior • Mavericks reloading • Holiday Lightings & Santa Sightings • Cities prepare for winter blast repeat • Wolfpack duo takes last shot at state tourney • This Weekend in Your Town • Tips for the stormy season • Boeing will build, flight test and deliver 787s in South Carolina to spe ... • Snohomish County EDC promoting job growth in key industry clusters • $4 million grant to advance brain tumor research has Everett links • Providence medical center construction tops off its 12-story steel frame ... • Tulalip affordable housing project to be financed by KeyBank, Raymond Ja ... • Arlington's Lak of Ink has a growing following for Luke Kooyman's creati ... • Bank of the Northwest formed • Cascade Bank earns $1.6 million