This article is more than 1 year old
Plug pulled Latvian cybercrime hub
Bullet proof host taken down
Upstream providers have pulled the plug on Latvian ISP Real Host over allegations it maintained cybercrime servers linked to the Zeus botnet.
Real Host was disconnected by its upstream provider, Junik, on Monday, after TeliaSonera told Junik to either cut the juice or face sanctions itself, according to reports by the FT and other news outlets.
Like other disconnected hosting companies before it, such as McColo and Atrivo, Real Host was linked to an unsavory list of botnet-related cybercrime activities.
Security researchers, who described Real Host as a cybercrime and bullet proof hosting hub, said its systems acted as command and control nodes for the Zeus botnet and a locus for exploits based on a recently patched Adobe Flash exploit, among other crimes. Hostexploit has a full breakdown of the extensive charge sheet against Real Host here.
The enforcement action against Real Host is the first time the internet community put pressure on upstream providers to take action on an allegedly rogue ISP in eastern Europe. ®
Biting the hand that feeds IT
