Nation & World

<< Previous   of   Next >>   ADVERTISEMENT   CONTACT THE HERALD Do you have a news tip? newstips@heraldnet.com | 425.339.3400   Published: Thursday, November 13, 2008 Big spam host is is booted off the Web The Washington Post WASHINGTON -- The volume of junk e-mail sent worldwide may have dropped drastically Wednesday after a Web-hosting firm, identified by many in the computer security community as a major host of organizations engaged in spam activity, was taken offline. McColo, a San Jose Web-hosting company that, according to computer security experts, serves as a U.S. staging ground for international firms that sell items from counterfeit pharmaceuticals to child pornography, ceased operations after Internet providers blocked Web access. SecureWorks, an Atlanta security-services provider, estimates that McColo was responsible for 75 percent of all spam sent in the United States each day. Global Crossing, a Bermuda company with U.S. operations and one of the two companies that provided Internet access to McColo, would not say why it cut off the company, but said its policy prohibits "malicious activity." Benny Ng, a director for Hurricane Electric, a California firm that served as McColo's other Internet provider, said it decided to block the firm after reading about allegations against McColo. "We shut them down," Ng said. "We looked into it a bit, saw the size and scope of the problem ... Within the hour, we had terminated all of our connections to them." A number of security researchers have published reports over the past year alleging that McColo hosts the top "botnets," or vast collections of hacked computers networked together, to blast out spam or attack others online. Joe Stewart, director of malware research for SecureWorks, said botnets such as "Mega-D" or "Srizbi," which are known to send e-mails about access to prescription drugs, have had their master servers hosted at McColo. Although security experts who have been seeking to stop McColo from allegedly hosting questionable sites are pleased to see the company lose its access, some are worried it will only make it harder to track illegal activity. "Everything will just be more spread out and harder to mitigate," Stewart said. "We rather like knowing where the bad activity is coming from, so protecting our networks is easier." READER COMMENTS Be the first to comment. You must be a registered user and verify your e-mail address to post comments to blogs or articles on HeraldNet. To register, click here. To read other terms and conditions, click here. Log out

1. Snohomish County man dies of swine flu 2. Lynnwood bank reprimanded by government 3. Police ID make of vehicle in fatal hit-and-run 4. Armed man shot by deputies in Arlington 5. IRS joins puppy mill investigation 6. Jetty Island ready for sand castles 7. Boeing's 6-month tally: 1 net order 8. Warriors & Patriots: Many American Indians served before getting full citizenship rights 9. Movin' out 10. Marshals seize swindler's home 2 - Top 10 Stories Most Talked about 3 - Top 10 Stories Most Emailed

• Warriors looking for balance • Three Scots vying for QB slot • Jackson looks for another title • Decorated veteran continues to serve as active volunteer • City Council reviewing sign regulations • Wildcats get a peek at newcomers • Lynnwood still in rebuilding mode • Shoreline feels a kindergarten growth spurt • Leave the patriotic pyrotechnics to professionals, cities urge • Trading dollars for kilowatts New PUD energy conservation programs save ... • By John Wolcott SCBJ Editor • Record crowd at Paine Field’s General Aviation Day as FHC Celebrate ... • Celebration of aviation's history and future presented in multiple venue ... • The time is ripe for small businesses to take no prisoners • EPA proposal to regulate global-warming gases would be costly for small ... • Innovation helps the town of Forks to offset tough economy • Powering the people