Nation & World

<< Previous   of   Next >>   ADVERTISEMENT   CONTACT THE HERALD Do you have a news tip? newstips@heraldnet.com | 425.339.3400   Published: Thursday, November 13, 2008 Big spam host is is booted off the Web The Washington Post WASHINGTON -- The volume of junk e-mail sent worldwide may have dropped drastically Wednesday after a Web-hosting firm, identified by many in the computer security community as a major host of organizations engaged in spam activity, was taken offline. McColo, a San Jose Web-hosting company that, according to computer security experts, serves as a U.S. staging ground for international firms that sell items from counterfeit pharmaceuticals to child pornography, ceased operations after Internet providers blocked Web access. SecureWorks, an Atlanta security-services provider, estimates that McColo was responsible for 75 percent of all spam sent in the United States each day. Global Crossing, a Bermuda company with U.S. operations and one of the two companies that provided Internet access to McColo, would not say why it cut off the company, but said its policy prohibits "malicious activity." Benny Ng, a director for Hurricane Electric, a California firm that served as McColo's other Internet provider, said it decided to block the firm after reading about allegations against McColo. "We shut them down," Ng said. "We looked into it a bit, saw the size and scope of the problem ... Within the hour, we had terminated all of our connections to them." A number of security researchers have published reports over the past year alleging that McColo hosts the top "botnets," or vast collections of hacked computers networked together, to blast out spam or attack others online. Joe Stewart, director of malware research for SecureWorks, said botnets such as "Mega-D" or "Srizbi," which are known to send e-mails about access to prescription drugs, have had their master servers hosted at McColo. Although security experts who have been seeking to stop McColo from allegedly hosting questionable sites are pleased to see the company lose its access, some are worried it will only make it harder to track illegal activity. "Everything will just be more spread out and harder to mitigate," Stewart said. "We rather like knowing where the bad activity is coming from, so protecting our networks is easier." READER COMMENTS Be the first to comment. You must be a registered user and verify your e-mail address to post comments to blogs or articles on HeraldNet. To register, click here. To read other terms and conditions, click here. Log out

1. Emory’s owner fears fire was arson 2. Monroe honking case makes it to state Supreme Court 3. Vatican ponders the souls in space 4. 81 veterans' names, 81 meaningful lives honored in Snohomish 5. Hope dims that Olympics will boost region 6. Student hit in crosswalk to return 7. Smokey Point to celebrate end of roadwork 8. Death on Edmonds waterfront ruled a suicide 9. Help for young moms may continue 10. Semifinal slate sealed on ‘Dancing With Stars’ 2 - Top 10 Stories Most Talked about 3 - Top 10 Stories Most Emailed

• Bazaar Fever • Hawks proud of historic season • Olson always put Edmonds first • Honoring student veterans • ‘Wheedle' author comes to Lynnwood bookshop • Mavs build early lead en route to easy win • Prep football games of the week (state playoffs) • Tears of laughter, tears of grief • Death on Edmonds beach likely a suicide • Boeing will build, flight test and deliver 787s in South Carolina to spe ... • Snohomish County EDC promoting job growth in key industry clusters • $4 million grant to advance brain tumor research has Everett links • Providence medical center construction tops off its 12-story steel frame ... • Tulalip affordable housing project to be financed by KeyBank, Raymond Ja ... • Arlington's Lak of Ink has a growing following for Luke Kooyman's creati ... • Bank of the Northwest formed • Cascade Bank earns $1.6 million