Feeds

WikiLeaks urged to stop hosting on Russian blackhat ISP

Virtual mafia state, indeed

Boost IT visibility and business value

Security watchers have urged Wikileaks to stop hosting its material with a "bulletproof" Russian ISP believed to primarily cater to, or be controlled by, Russian cyber criminals.

Wikileaks.org now points to a mirror of the site, mirror.wikileaks.info, hosted by Webalta, a blackhat ISP linked to a company called Heihachi Ltd, according to Spamhaus. The .org URL has been WikiLeaks' main web address since its launch in 2006.

"Spamhaus regards the Russian Webalta (also known as Wahome) host as being "blackhat" - a known cybercrime host from whose IP space Spamhaus only sees spamming, malware/virus hosting, phishing and other cybercriminal activities," the anti-spam organisation said on Tuesday evening.

The warning follows similar concerns raised by Trend Micro, which also runs a spam-blocking list.

Both firms said that whatever political view one takes of the ongoing WikiLeaks saga, the site's administrators should take more care over the company it keeps.

Ironically, the judgment of an investigator that Vladimir Putin's Russia is a "virtual mafia state" has been one of the highest-profile disclosures from the US embassy cables so far released by Wikileaks.

"The fact that recently some unknown person or persons decided to put a Wikileaks mirror on IP address 92.241.190.202 should raise an alarm; how was it placed there and by whom," said Spamhaus.

"Our concern is that any Wikileaks archive posted on a site that is hosted in Webalta space might be infected with malware... Spamhaus takes no political stand on the Wikileaks affair."

Trend Micro said: "We don't know whether wikileaks.org has perhaps been compromised or whether WikiLeaks is knowingly getting services from a blackhat provider.

"To give you an idea, here are some illustrious neighbors: paypal-securitycenter.com, carders.kz, idchecking.ir (phishing), and postbank-sicherung.com."

The wikileaks.org domain was offline for a week after the plug was pulled by its DNS provider EVERYdns.net. It reappeared on Friday after being registered with another US DNS outfit, Dynadot. ®

Build a business case: developing custom apps

More from The Register

next story
Munich considers dumping Linux for ... GULP ... Windows!
Give a penguinista a hug, the Outlook's not good for open source's poster child
UK fuzz want PINCODES on ALL mobile phones
Met Police calls for mandatory passwords on all new mobes
Yes, but what are your plans if a DRAGON attacks?
Local UK gov outs most ridiculous FoI requests...
e-Borders fiasco: Brits stung for £224m after US IT giant sues UK govt
Defeat to Raytheon branded 'catastrophic result'
Govt control? Hah! It's IMPOSSIBLE to have a successful command economy
Even Moore's Law can't help the architects of statism now
Detroit losing MILLIONS because it buys CHEAP BATTERIES – report
Man at hardware store was right: name brands DO last longer
Snowden on NSA's MonsterMind TERROR: It may trigger cyberwar
Plus: Syria's internet going down? That was a US cock-up
This'll end well: US govt says car-to-car jibber-jabber will SAVE lives
Department of Transportation starts cogs turning for another wireless comms standard
New voting rules leave innocent Brits at risk of SPAM TSUNAMI
Read the paperwork very carefully - or fall victim to marketing shysters
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Top 8 considerations to enable and simplify mobility
In this whitepaper learn how to successfully add mobile capabilities simply and cost effectively.
Solving today's distributed Big Data backup challenges
Enable IT efficiency and allow a firm to access and reuse corporate information for competitive advantage, ultimately changing business outcomes.
Reg Reader Research: SaaS based Email and Office Productivity Tools
Read this Reg reader report which provides advice and guidance for SMBs towards the use of SaaS based email and Office productivity tools.