Global co-op feeds FBI's botnet fight

The FBI claims that fighting cybercrime is a top priority, right behind antiterrorism and counterintelligence, and it is seeing better results thanks to worldwide cooperation

By Matt Hines
June 14, 2007

Talkback

E-mail

Printer Friendly

Reprints

In addition to leaving customers unsatisfied with their ability to respond to attacks, and potentially driving ISPs with minimal support budgets out of business, asking the service providers to become the de facto police for stopping botnet activity is impractical for a number of reasons, McPherson said.

"You tend to see a lot of people, not just law enforcement, calling for quarantines of suspected botnet infected IP addresses, but you can't just start blocking legitimate users who may not know they are involved, what if you stop someone from making a VoIP-based emergency services call?" McPherson questioned. "If someone gets blocked by their ISP, they're going to move to another provider; systems and solutions to automate the security defenses needed to address this problem are being developed, but it will take time, and most infrastructure out there won't natively support that sort of work today."

McPherson said that it is encouraging to see cooperation between U.S. law enforcement officials and foreign nations, but he believes that the botnet issue will remain a major problem nonetheless.

"It's good to see that there is more global information sharing going on, and that local governments are taking responsibility for cleaning up their own backyards, but with millions of bot hosts and more than 90 percent of those outside the U.S., I think they're still only putting a tiny dent in the problem at his point," said McPherson.

Other security industry experts agreed that it will take a lot more effort on the part of the international law enforcement community to have any noticeable impact on botnets and other cyber-criminals.

However, efforts such as Bot Roast will succeed in forcing botnet operators to increasingly worry that they may indeed be brought to justice for the crimes they commit, said Alan Paller, director of research for IT security training provider SANS Institute.

"At his point, the law enforcement community still can't get much done because so many of the perpetrators are located in so many places where there are no cooperative agreements," he said. "But what they are doing is increasing the risk and raising the cost of committing the crimes, which is just what law enforcement is good at; in the end they can't ever really stop people from trying to rob banks, but they can make it really dangerous and costly, just as they always have tried to."

Matt Hines is a senior writer at InfoWorld.

« PREVIOUS PAGE | 1 | 2 | 3

Add to:

Digg

Talkback:

comment Post a Comment

MOST COMMENTS

>> Talkback: Have your say

Virtualization: A Step by Step Approach to Success
Your virtual machines can be up and running in a matter of minutes. HP and Citrix have integrated XenServer with HP ProLiant servers and management tools, powered by hardware-assisted Intel Virtualization Technology to enable high- performance, cost-savings solutions for server consolidation and disaster recovery. Sponsor: HP

» Click here to view this Webcast

Planning For A Disaster
This new, comprehensive Solutions Guide is your one stop source for Disaster Recovery. In it you'll learn how to reduce the likelihood of a disaster and to create a rock solid business continuity plan should you face a disaster situation. Sponsored by Equallogic

» Click here to download now

- Special Advertising Partners -

WHITE PAPERS

Document Management 2.0 - Web-based Collaboration and the Road to Compliance - Adopting Web-based document management can put organizations in a better position to address constraints and opportunities...
Content Management Integration - The Triumph of the foot soldier - The first Content Management applications addressed common business problems with complex solutions. While they filled a...
Class of Service: Myths and Misconceptions - There has been much discussion about the benefits of CoS; but, there are also common myths, which unless challenged, can...
Factors to consider when comparing DSL or Cable - As the demand for high-speed access increases, businesses are looking for cost-effective connection options for remote workers...
Virtualizing Storage for VMware Success - Find out how to improve your VMware environment by not only virtualizing your servers, but your storage as well. Find out...
Best Practices for VMware ESX Server - Discover how to effectively support host-based backups in a SAN environment with the best practices presented in this whitepaper...

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

Find out when the latest white paper is available:

INFOWORLD MARKETPLACE

Deliver REMOTE SUPPORT Easily. Try WebEx FREE! - DOWNLOAD WEBEX SUPPORT CENTER FREE! Deliver efficient, effective support. CRUSH SUPPORT LOG JAMS!
Migrating to an IP-VPN? XO Can Make It Happen - Learn the five critical success factors with a free whitepaper from XO Enterprise Solutions.
Sign up to TRY WEBEX SUPPORT CENTER FOR FREE! - Get your FULL FEATURED trial here. Share documents and applications, address support challenges.
IP Networks Boost Secure Health Communications - AT&T provides secure communication to keep health care moving forward.
Why a CMDB? - IT best practices (ITIL) have shown the benefits of a CMDB. Click for whitepapers.

» BUY A LINK NOW

Global co-op feeds FBI's botnet fight

MOST COMMENTS

» Technology White Papers Library

Technology White Papers by Topic

Technology White Papers E-mail Alert

Video

Podcasts

InfoWorld Blogs

Columnists

Find Products and Companies

Resource Center

Sponsored Technology Links

Sponsored Technology Links
Oracle - Best Practices for Successful SOA Governance Villanova University - Learn the Latest IS Security Practices - 100% Online! CA - Plan IT better, Manage IT better. CA - Manage your IT more effectively. MKS - Get Power and Simplicity of UNIX while working in Windows InterSystems - Develop and integrate faster with InterSystems Ensemble. Rackspace - Go Green Without Sacrificing Server Performance AT&T - Factors to consider when comparing DSL or Cable AT&T - Thinking about IMS AT&T - What to expect from a Technology Assessment. AT&T - Refine your company's plan for a Business Disruption Event HP - HP Color LaserJet CP4005n printer. Now $899. SHOP NOW Dell - Dell Latitude: Battery life up to 19 hours. Learn more. Equallogic - Flexible, Scalable, Enterprise Storage for Virtual Infrastructures Equallogic - Four Steps to Disaster Recovery and Business Continuity Using iSCSI HP - Get Extreme Storage for Extreme Business with HP. Dell/Equallogic - PS Series Best Practices Deploying Microsoft(R) Exchange Server 2007 in an iSCSI SAN Symantec - Make data protection more efficient with Veritas NetBackup Xerox - Experience the colorful side of business at www.frugalcolor.com Dell - Windows Vista: A Cyber Security Shield Mindreef - Key Strategies for SOA Testing AT&T - Class of Service: Myths and Misconceptions HP - HP LaserJet P4014n printer Starting at $699 after $100 IS. SHOP NOW		HP - HP LaserJet M3035 MFP series Starting at $1,599. SHOP NOW HP - HP StorageWorks products-control, consolidation and confidence. HP - Speed, agility, flexibility - The HP BladeSystem c-Class. Big Fix - Before all Hell breaks loose on your network & your endpoints! 3PAR - Takes on the Storage Industry Giants Platespin - Consolidated Disaster Recovery Using Virtualization Platespin - 8 Phases of a Successful Consolidation Initiative SGI - SGI Adaptive Data Warehouse: Building a High-End Oracle Data Warehouse Microsoft - Learn about the software-based VoIP solution from Microsoft. Microsoft - Meet Windows Server 2008. The server unleashed. HP - Whitepaper: How IT Quality Managers Respond to SOA Change IBM - Webcast: Take control of your content- leverage MOSS HP - Whitepaper: Software Quality Management for SOA Polycom - Telepresence For The Enterprise Tripwire - Secure your virtual and physical environments with the same software. Novell, IBM, and Intel - Solution for Open Virtualization Provides Server Consolidation AT&T - Enhancing security through Quantum Cryptography Microsoft - Microsoft Forefront makes defending your systems easier. Learn how. AMD - Renowned Engineering Institution Chooses AMD Processor-Based Servers AMD - Watch this flash demo of the Quad-Core AMD Opteron Processor AMD - HP and Oracle deploy unbreakable computing infrastructure Qwest - Learn how Qwest voice and data solutions can save you time. Oracle - The Power of Two with SOA and BPM

	HOME NEWS BLOGS PODCASTS VIDEOS TECHNOLOGIES TEST CENTER EVENTS CAREERS	About \| Advertise \| Awards \| RSS \| Contact Us
Copyright © 2008, Reprints, Permissions, Licensing, IDG Network, Privacy Policy, Terms of Service. All Rights reserved. InfoWorld is a leading publisher of technology information and product reviews on topics including viruses, phishing, worms, firewalls, security, servers, storage, networking, wireless, databases, and web services. CIO :: ComputerWorld :: CSO :: Demo :: GamePro :: Games.net :: IDG Connect :: IDG World Expo Industry Standard :: IT World :: JavaWorld :: LinuxWorld :: MacUser :: Macworld :: Network World :: PC World :: Playlist