After Links to Cybercrime, Latvian ISP is Cut Off

A Latvian ISP linked to online criminal activity has been cut off from the Internet, following complaints from Internet security researchers.

By Robert McMillan
Wed, August 05, 2009

IDG News Service — A Latvian ISP linked to online criminal activity has been cut off from the Internet, following complaints from Internet security researchers.

Real Host, based in Riga, Latvia was thought to control command-and-control servers for infected botnet PCs, and had been linked to phishing sites, Web sites that launched attack code at visitors and were also home to malicious "rogue" antivirus products, according to a researcher using the pseudonym Jart Armin, who works on the Hostexploit.com Web site. "This is maybe one of the top European centers of crap," he said in an e-mail interview.

"It was a cesspool of criminal activity," said Paul Ferguson a researcher with Trend Micro.

The ISP was disconnected from the Internet by its upstream provider, Junik, on Monday, after its provider, TeliaSonera told it to stop servicing Real Host or face sanctions Armin said.

Real Host was considered a "bullet proof" hosting provider, that would allow customers to remain online even after they had been linked to malicious activity. It had been linked to the Zeus botnet-making software.

This isn't the first time this type of hosting provider has been knocked offline. In the past year, at least three U.S. ISPs: Atrivo, McColo and 3FN have been unplugged after security researchers built cases against them. Atrivo and McColo were also taken offline by their upstream providers. 3FN was shut down by the U.S. Federal Trade Commission.

But according to Armin, this may be the "first time an international group has achieved this across borders and in Eastern Europe."

In the past, these takedowns have had a serious affect on spam. And while some observers reported a noticeable drop in spam over the weekend, security experts say that this was probably not attributable to the Real Host takedown.

Observers expect to see the criminal activity linked to Real Host resume soon, but they say that the takedown puts some pressure on the bad guys and the networks that provide service to them. "The precedent that's being set right now is that you need to take some responsibility for your network," said Lawrence Baldwin, owner of security research firm Mynetwatchman. "There actually are some consequences now for allowing an obviously heavy concentration of criminal activity on your networks. It's just not going to be accepted anymore."

White Papers »
Virtual Patching with Network Security
The McAfee virtual patching solution provides a layered approach to security risk management, while adding the ability to apply a virtual patching strategy to your existing change-management process.
Gartner Next Generation Network IPS Research Note
Learn more about Gartner's evaluation of network IPS that places McAfee in the leaders' quadrant. Deep inspection network-based intrusion prevention continues to be a due-diligence security control.
Free Your Time! How Automated IPAM saves time with your company's virtualization, mobility and IPv6 challenges
IP networks are growing at an exponential rate thanks to virtualization, mobile devices and IP v6. But IT departments are under budget constraints and skilled staff is becoming scarce. The solution..
Automated Network Services Deliver on Enterprise's "Time to Value"
CIOs know that Information technology is the foundation for business competitiveness and essential to regulatory compliance. Increasing IT complexity and tight budgets create a dilemma for CIOs.
Make the Connection: Better Network Connectivity Drives Transformation
Network connectivity is more than just plumbing. Leading organizations today see high-performance network connectivity as a critical enabler of competitive advantage, and not just a way to cut expenses. Click here for exclusive survey findings from Comcast and IDG on why Ethernet/fiber is the smart choice for high-performance network connectivity.
Comparison of Avaya and ShoreTel UC Solutions
Whether you need to build a business case for a UC system, or are ready to select a new solution, this white paper offers a thorough, side-by-side comparison of ShoreTel and Avaya offerings to help you make informed decisions.
Webcasts »
Gartner Next Generation Network IPS Webcast
Learn how Gartner's criteria for next generation IPS helps organizations achieve effective threat prevention despite changes in network communications, new applications, and changes in the threat landscape.
How Automation Can Take the Pressure Off Your Network
Today's networks are under attack. To build a better network, you've got to understand the stresses that today's networks are under due to mobility, virtualization and cloud computing.
Optimizing Networks for the Cloud
Join guest speaker, Rohit Mehra, IDC Director of Enterprise Communications Infrastructure, to explore current trends, discuss best practices for optimizing Data Center and enterprise campus network infrastructures for the Cloud, and identify ways to better allocate network resources, reduce operating costs and improve application performance.
Customer Spotlight: How IPC The Hospitalist Company Implemented Oracle on Vmware
Have you been looking to hear about customer's experiences with the new VMware vCenter Site Recovery Manager product? View this webcast to learn about VMware customer, Navicure, and their experiences testing and evaluating the recovery manager, their progress in implementing it in their environment and their advice other customers considering using vCenter.
Quantifying the Business Value of VMware View - Webcast
Many enterprises have discovered that the use of virtualization to support desktop workloads creates a range of significant benefits. These benefits include price efficiencies, improved IT management and greater agility and choice for end users.

This VMware sponsored webcast with IDC will provide both quantitative measurement of the business value -- defined as the expected ROI -- and qualitative analysis associated with the use of VMware View™. IDC will also provide an analysis of the View Composer and ThinApp™ features of VMware View, including the business value of these solutions and an overview of how they work.

Attend this webcast to learn about:
- Challenges and barriers that might impede the adoption of desktop virtualization
- Navigating roadblocks to facilitate a strategic implementation
- Optimizing qualitative and quantitative benefits to IT and your business
Deliver Private Cloud Database as a Service with VMware vFabric Data Director
VMware recently announced VMware vFabric™ Data Director, a new database deployment and operations platform that enables enterprise IT organizations to offer database as a private cloud service. Built on top of VMware vSphere 5, vFabric Data Director enables IT organizations to ontrol database sprawl through automation and consistent policy enforcement and accelerate application development cycles with self-service database management. Attend this webcast to learn how vFabric Data Director can help you build database-as-a-service in your datacenter.
Newsletter Sign-Up »

Receive the latest news test, reviews and trends on your favorite technology topics

Choose a newsletter
  11. View all Newsletters | Privacy Policy
White Papers » All White Papers

Virtual Patching with Network Security

Gartner Next Generation Network IPS Research Note

Free Your Time! How Automated IPAM saves time with your company's virtualization, mobility and IPv6 challenges

Automated Network Services Deliver on Enterprise's "Time to Value"

Make the Connection: Better Network Connectivity Drives Transformation

Comparison of Avaya and ShoreTel UC Solutions

Comparison of Cisco and ShoreTel Unified Communication Solutions

Investigating UC Vendors

SIP Trunks and UC security

Nemertes Research PilotHouse Awards: IP Telephony

Best Practice Tips on Building a Unified Communications Business Case

Unified Communications Buyer's Guide

The Changing Role of Mobile Communications in the Workplace

Reduce Cellular Spend With ShoreTel Mobility

Improving Business Value of WAN Optimization

Increase IT Performance from the Enterprise to the Cloud

The Changing Requirements of WAN Optimization

Accelerating Data Migration with WAN Optimization

Forrester - Successfully Consolidating Branch-Office Infrastructure In The Face Of More Users, Services, And Devices

Make the Connection: Metro Ethernet Leaps Ahead for Data Center Connectivity
Resource Center
buy a link »
Ads by TechWords