FBI Sets Legal Precedent in Botnet Sting
FBI Sets Legal Precedent in Botnet Sting
Posted 04/14/2011 at 7:56am
| by Paul Lilly
3
Comments
Print
FBI investigators tried a new approach to taking down a zombie PC gang. For the first time ever, federal authorities in the U.S. seized control of the bad guys' servers, a move that required the U.S. Justice Department to seek permission from a judge in order to carry out the sting. After doing so, authorities were able to counter-attack by issuing their own commands, programming the malware to shutdown, and also log IP addresses of infected machines.
With this information, authorities can turn around and notify ISPs about which machines are compromised, which can then share that information with the victims, according to a BBC report.
While this is a new approach in the U.S., the same tactic has been used elsewhere. Dutch police took a similar approach when it shut down the Bredolab botnet, prompting privacy gurus to question whether or not such a move was legal.
In this case, the FBI was targeting the Coreflood botnet. Coreflood is estimated to have infected some 2.3 million machines, resulting in millions of dollars for its operators.
More like this
3
Comments
Comments are closed on this article
aarcane
April 14, 2011 at 12:16pm
I'm all for notifying infected victims and seizing systems that are clearly used to compromise security like that. the only grey area I see is what if it's a legitimate server that's been hacked in the future? should they be able to close down a legitimate business in the process? I think there does need to be a little common sense and damage controll involved in the process, but in general it gets my green seal of approval.
KenLV
April 15, 2011 at 1:21am
“the only grey area I see is what if it's a legitimate server that's been hacked in the future? should they be able to close down a legitimate business in the process?”
Think of it this way, if you legally own a gun, or a car, or just about anything, but someone takes that item (with or without your permission) and uses it to commit a crime – or MANY crimes, don’t the authorities have a right, nay and OBLIGATION to wrest control of that item from the perpetrator of the crime? I say yes. I would then expect them to return it to the proper owner.
Marthian
April 14, 2011 at 10:04am
one of the few times I will ever be ok with the government being involved with the internet. *was not a victim though, so didn't affect me.*
Connect with MaximumPC
Featured Content
The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...
This month's issue
Feature
Build a PC On Any Budget
Feature
Cloud Services Showdown
How-To
Encrypt Your External Drive
Build It
Upgrade an X58 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy1 day 9 hours ago
- maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj1 day 9 hours ago
- maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 7 hours ago
