Feeds

Ukrainian cybercrime-friendly ISP hit by fire after clean-up

How curious

Reducing security risks from open source software

A Ukrainian ISP hit by fire over the weekend was in the process of cleaning up its act after earlier being labelled as a leading haven for cybercrime, PC World reports.

Odessa-based Hosting.ua was hit by a fire on March 27 that resulted in severe damage to its infrastructure and took it offline. HostExploit.com, which tracks the distribution of crimeware on the net, reported late last year that Hosting.ua was the fourth in a rogue's gallery of ISPs that hosted spam, malware or other internet crud.

However, over the last three months the Ukranian ISP had begun cleaning up its act, dropping way down to rank 381 in HostExploit.com's list of shame. Of the 5,381 websites tested on this network over the past three months, 291 of the websites served content that resulted in malicious downloads.

Pressure from law enforcement and upstream providers may have pushed Hosting.ua towards cleaning up its business. Being identified as a haven for cybercrime leads to blacklisting that can affect the site of legitimate customers hosted with an ISP, a security researcher who worked with HostExploit.com who goes by the nickname Jart Armin explained.

Hosting.ua is home to an estimated 500,000 websites. It's unclear when it will be able to restore services to normal. A holding statement on the host site (Google translation below) charts the progress towards restoring services.

Full coverage of the incident will be given later, at a time when there will be a free human resources at the moment we can afford only short messages, to keep everyone informed.

In particular, we want to inform you that, at present, developments, we can conclude that the data remained in a virtual hosting is not corrupted backup servers.

Power lines, diesel generators, switchboards, optical backbone is not affected and have switched to the second premise datacenters, which was scheduled to launch in 3[rd] quarter of 2010.

At present, work is underway to restore the efficiency of virtual hosting and construction of racks to move the unaffected servers. It is primarily about servers with letter indices A, B, C, D, G. Information from the server, the indexes that begin with E and F is beyond repair, users of these servers will provide new dedicated server.

Some of the bad sites formerly hosted with Hosting.ua have migrated to the US, according to HostExploit.com

The cause of the fire is also unknown, but Armin of HostExploit cited unconfirmed reports from the Ukraine suggesting that fire alarms at the site may have been deliberately disconnected, providing circumstantial evidence of arson.

HostExploit.com has pictures of the aftermath of the fire at Hosting.ua in an informative blog entry here. ®

Mobile application security vulnerability report

More from The Register

next story
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Microsoft: You NEED bad passwords and should re-use them a lot
Dirty QWERTY a perfect P@ssword1 for garbage websites
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
NUDE SNAPS AGENCY: NSA bods love 'showing off your saucy selfies'
Swapping other people's sexts is a fringe benefit, says Snowden
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
British data cops: We need greater powers and more money
You want data butt kicking, we need bigger boots - ICO
Crooks fling banking Trojan at Japanese smut site fans
Wait - they're doing online banking with an unpatched Windows PC?
NIST told to grow a pair and kick NSA to the curb
Lrn2crypto, oversight panel tells US govt's algorithm bods
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Mobile application security vulnerability report
The alarming realities regarding the sheer number of applications vulnerable to attack, and the most common and easily addressable vulnerability errors.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.