Researchers Take Down Koobface Servers 35
splitenz notes the first actions in the war against the Koobface botnet, taken on the heels of a comprehensive report (PDF) on the operations of the botnet and the criminal gang behind it. The researchers who analyzed Koobface are the same ones who brought Ghostnet to light. "Security researchers, working with law enforcement and Internet service providers, have disrupted the brains of the Koobface botnet.The computer identified as the command-and-control server used to send instructions to infected Koobface machines was offline late Friday (US Pacific time). Criminals behind the botnet made more than $US2 million in one year. Facebook accounts are used to lure victims to Google Blogspot pages, which in turn redirect them to Web servers that contain the malicious Koobface code. This action is only a stage in the war against Koobface."
not sure (Score:5, Funny)
Awesome job guys.
Re: (Score:3, Insightful)
Those people need to be kicked off the net until they can demonstrate that they can play nicely with the rest of us.
Although the BOFH in me would like that, thoroughly fining them would be enough. And if we really had a law that would allow to ban people from the net for incompetence, how long would it take that it would be abused to cut off government critical voices and the like? Or some evil corp gets the machine of a critical blogger infected and he's offline. Not with me.
Re: (Score:2)
Although with the "evil corp" example, I'd argue people should be keeping their systems safe from evil corporations as well as evil crime syndicates
Are you safe from someone secretly breaking into your house and infecting your machine? And do you really only use software that is 100% proven to be not exploitable on machines with net connection? C'mon, it has to stay reasonable. You can't expect everyone to go online with Linux Live CDs or from a VM that is reverted to a clean snapshot after the session. Which are about the only ways to really stay clean.
Re: (Score:3, Insightful)
Why were people running a "flash player update" from a third party web site they got to from Facebook?
They are used to seeing the "you need the latest flash to view this content, click here to install it now". Sure when it's done the "normal" way the executable they randomly install will come from Adobe, but the entire process is begging for this tomfoolery.
To those who can't guess, I use Linux, won't install anything from Adobe and use noscript in the browser so forgive me if the "official" process has changed from the above idiotic implementation.
Re: (Score:3, Informative)
So... (Score:2)
So what you're saying is that it's somehow Adobe's fault? /duck
Re: (Score:2)
In my working experience, while inability to safely drive a vehicle or properly operate machinery is cause enough for firing, I have YET to see anyone fired from a job due to their inability to properly is a computer. Even if using one is ESSENTIAL to their job. Even if their reckless usage causes actual damages.
I can't see how responsible computer use will get to be expected in the home user world when businesses don't even expect their employees to properly use them.
Re: (Score:2)
Considering that we have graphics cards potentially on the way to being hacked so that you can't even be sure of the URL after checking the address bar, I think it's high time to stop blaming the victim and start calling these "separators of fools and their money" what they really are.
Thieves, cheaters, hackers, and most of all, terrorists.
Thieves because they steal, cheaters because they happily break the same rules that the rest of us are required to follow, hackers because of how they draft our machines
Re: (Score:2)
I'll agree with you if you will agree that Microsoft (and now Apple) are the primary abusers.
Bill Gates just couldn't leave another opportunity to rule the world alone long enough for the tech to mature enough for ordinary people to use it.
Re: (Score:2)
"When are we going to start expecting people to act responsibly online? "
Never, and the expectation that "they" will act reasonably is itself unreasonable.
Fight Fire With Fire. (Score:2)
Folks, spammers don't play by the rules, and playing by the rules will not, in the long term, even dent spammers.
If we're not willing to us a "no holds barred" approach to attacking the spam bot issue, well, you better just get used to more and more spam.
Re: (Score:3, Insightful)
It may be reasonable to start doing something against the bots but "no holds barred" is never justified. "Fighting fire with fire" just burns everything down.
Re: (Score:3, Insightful)
In particular because vigilantes have a bad reputation when it comes to correctly identifying targets and having a low occurrence of collateral damage. You get people who very much have the crusader mentality who get convinced of their own righteousness and infallibility. It leads to problems, it leads to innocents getting caught up on a large scale. Whenever you ahve to start up with "The ends justify the means," it generally means that they in fact don't.
Re: (Score:2)
Re: (Score:2)
""Fighting fire with fire" just burns everything down."
That is a much-cherished asserted conclusion promulgated by those who are emotionally uncomfortable with force.
Re:Fight Fire With Fire. (Score:5, Funny)
If we're not willing to us a "no holds barred" approach to attacking the spam bot issue, well, you better just get used to more and more spam.
I'm working on crossing a Predator Drone with traceroute. Right now it's more like 'Tron' meets the 'A-Team' but it's still in the development phase. I'll let you know when I'm ready to test it ;-)
Re: (Score:1, Offtopic)
Re: (Score:1, Flamebait)
If you receive a notice of high bandwidth usage after a pattern of never going over a specific amount in a month. Whats your problem?
Profiling of bandwidth use would be a very good tool. And I feel completely legitimate. Your a 68 year old parent who is using 40 gig a month of bandwidth. This is after a pattern over several years of only 1 gig a month. You think that shouldn't be questioned???
And based on your snotty response to the previous person. Yes, I expect you to flame me. Go for it, I'm waiting wi
Re: (Score:2)
If we're not willing to us a "no holds barred" approach to attacking the spam bot issue, well, you better just get used to more and more spam.
By fighting fire with fire you risk disrupting the whole internet; spam is nothing compare to the shit you could unleash by doing so. The worst than happen when spam cross my filter is that I have to press flag as spam, considering the trouble caused, this problem does not deserve anymore resources than it currently has.
Re: (Score:2)
It's much worse than that. Spam accounts for more than 90% of email traffic arriving at servers. There is also much more to malware than spam. Don't lose track of the fact that bots are computers controlled by criminals. There are probably hundreds of millions of them.
Re: (Score:1, Offtopic)
My biggest problem is not spam. But people that get infected with key loggers or other data gathering tools which give up everything about them. Loss of income, loss of privacy.
I think everyone lose's track of that fact.
Bravo! (Score:1)
Well Done.
Good job guys, but... (Score:1, Insightful)
Re: (Score:2)
TANSTAAFM (Score:2)
TANSTAAFM: There Ain't No Such Thing As A Free Market.