Home > Ask the Security Experts > Questions & Answers > Prosecuting those who spread malicious code
Ask The Security Expert: Questions & Answers
EMAIL THIS

Prosecuting those who spread malicious code

Ed Skoudis EXPERT RESPONSE FROM: Ed Skoudis

Pose a Question
Other Security Categories
Meet all Security Experts
Become an Expert for this site


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   


>
QUESTION POSED ON: 15 January 2004
I am receiving the Klez worm almost daily. I have used programs like Sam Spade and Spam Punished to identify the sender's ISP. I have repeatedly contacted the ISP requesting their help in identifying the perpetrator, but I only get the standard "thank you" e-mail in response. Are there any federal law enforcement agencies that have an interest or responsibility in tracking these criminals? Have any victims, to your knowledge, been successful in civil litigation against the non-cooperative ISP?

>
In your question, you use the word "criminal." Chances are the folks sending you Klez aren't really criminals in the vast majority of cases. They are victims, too, unknowingly infected with the worm. Sadly, many ISPs will ignore the problem as well. You can report such problems to the Computer Emergency Response Team Coordination Center (CERT-CC). They gather statistics about attacks and might be able to offer some advice on how to clean up if you are infected. Unfortunately, though, they are unlikely to help you actually stop such an attack or interact with an ISP.

For more direct involvement with law enforcement, I recommend that you file a complaint with the Internet Fraud Complaint Center (IFCC), which is a partnership between the FBI and the National White Collar Crime Center (NW3C). Their Web site is www.ifccfbi.gov. Finally, if this is a persistent problem, where you believe an individual is actually targeting your organization, you may want to try your local FBI field office. A handy list of these offices, their postal addresses, phone numbers, and Web sites is at www.fbi.gov/contact/fo/fo.htm. Outside the U.S., you may want to try contacting your closest law enforcement agency affiliated with Interpol, a list of which is available at www.interpol.int/Public/Links/PolJust.asp

For more info on this topic, please visit these SearchSecurity.com resources:
  • Best Web Links: Law, public policy and standards
  • Computer forensics not just for TV


    • Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



    RELATED RESOURCES
    2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
    Search Bitpipe.com for the latest white papers and business webcasts
    Whatis.com, the online computer dictionary



    Search and Browse the Expert Answer Center
    Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
    Browse our Expert Advice



    Find Security Solutions for Your Business
    TechTarget Security Media
    Information Security View this month\\'s issue and subscribe today.
    Information Security Decisions Apply online for free conference admission.
    		SearchSecurity.com
    HomeNewsMagazineMultimediaWhite PapersLearningAdviceTopicsEventsAbout Us
    SEARCH :     Site Index Powered by: Search Powered by Google

    About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
    TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

    TechTarget Corporate Web Site  |  Media Kits  |  Site Map




    All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy     		  TechTarget - The IT Media ROI Experts