Arbor Networks Shuts Down Dutch Botnet Attack; Arbor Networks Works with Dutch Network Security Authorities to Shut Down Malicious Botnet Attacks against Broadband Sites in The Netherlands.

LEXINGTON, Mass. -- Arbor Networks has tracked and helped shut down a malicious botnet that was trying to wreak wreak
tr.v. wreaked, wreak·ing, wreaks
1. To inflict (vengeance or punishment) upon a person.

2. To express or gratify (anger, malevolence, or resentment); vent.

3. havoc against broadband sites hosted in the Netherlands. As part of its global intelligence and monitoring efforts, Arbor Networks tracks malicious, network-based behaviour, and works with authorities to immobilize im·mo·bi·lize
v.
1. To render immobile.

2. To fix the position of a joint or fractured limb, as with a splint or cast.

im·mo destructive activities at the source.

The Arbor security team decoded the botnet on March 1, 2006 and after logging its activities, correlated a series of distributed denial of service A condition in which a system can no longer respond to normal requests. See denial of service attack. (DDoS) attacks against broadband sites hosted in the Netherlands as having emanated from the network of compromised hosts. The Arbor security team then contacted the Dutch Computer Emergency Response Team (CERT), GOVCERT.NL, the next day and provided them with all the gathered intelligence to assist in the shutdown of the botnet.

Bot software often employs the Internet Relay Chat See IRC.

(chat, messaging) Internet Relay Chat - (IRC) /I-R-C/, occasionally /*rk/ A client-server chat system of large (often worldwide) networks. IRC is structured as networks of Internet servers, each accepting connections from client programs, one per user. (IRC (Internet Relay Chat) Computer conferencing on the Internet. There are hundreds of IRC channels on numerous subjects that are hosted on IRC servers around the world. After joining a channel, your messages are broadcast to everyone listening to that channel. ) network protocol to communicate. The IRC server - likely a compromised host - that was used in these attacks resides on a network hosted in the Netherlands. During the Arbor security team's analysis of the botnet, data was discovered suggesting that the botnet "controller" was either an individual or group of individuals who spoke Dutch, and were employing Arabic-named IRC channels, usernames and passwords to control the botnet.

COPYRIGHT 2006 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.

Reader Opinion

Article Details
Printer friendly Cite/link Email Feedback
Publication:	Business Wire
Date:	Mar 13, 2006
Words:	203
Previous Article:	Local Business Leader Recognized for Contributions to the Community; Bert Brodsky Receives CCNY Townsend Harris Medal for 2005; Appointed Regional...
Next Article:	The Principal Financial Group Expands Worksite Offerings With Voluntary Disability; Group Voluntary Disability Insurance Provides Added Employee...
Topics:	Data security

Related Articles
Info-tech industry targets diverse threats: fears of network vulnerability fuel market for improved security systems.
Viruses on rise, but are companies liable?(computer viruses)
P-Cube enables ISPS to detect and quarantine spam zombies.(internet service providers)(Brief Article)
Triple anti-virus engines for webwasher CSM 5.2.(Virus Notes)(Brief Article)
Protecting against threats to enterprise network security.(SECURITY)
Computer hacker pleads guilty to mass hospital infection.(Security)
Spyware--the hidden threat to business security.(SOFTWARE INTELLIGENCE)
Proventia Network mail security system.(Security News and Products)
NEC Develops World-Leading Technology to Prevent IP Phone SPAM; VoIP SEAL(TM) a Giant Leap Toward Realization of Secure VoIP phones.
Cyber extortion is now a very real threat--is your business at risk?(Infosecurity Europe 2006: 25th-27th April 2006, Olympia, London.)