Troubled Ukrainian Host Sidelined
Saturday, January 31st, 2009A Ukrainian Web hosting provider that, according to published reports, has long served as home base to a prolific and invasive family of malicious software has been taken offline following abuse reports from Security Fix to the company’s Internet provider. Since at least 2005, and perhaps earlier, an entity known as UkrTeleGroup Ltd. has hosted hundreds of Web servers that control a vast network of computers infected with some variant of “DNSChanger,” according to security software vendor McAfee, which monitors worldwide malware. DNSChanger is a Trojan horse program that changes the host system’s settings so that all of the Internet traffic flowing to and from the infected computer is sent through servers controlled by the attackers. In a report issued last month, McAfee said it found more than 400 DNS servers on UkrTeleGroup’s network that appeared to be set up to to re-direct Web traffic for systems infected with DNSChanger.
Posted in News, Virus | No Comments »