logo


MAAWG Tackles Bots with New ISP Guidelines for Restoring Infected End-Users' Machines
Friday, July 31, 2009 11:00 AM


Industry Recommendations Can Improve Consumer Bot Removal

SAN FRANCISCO, July 31 /PRNewswire/ -- With the growing problem of bot infestations contributing to spam, identity theft and online fraud, the Messaging Anti-Abuse Working Group (MAAWG) has issued the first best practices aimed at helping the global ISP industry work more closely with consumers to recognize and remove bot infections on end-users' machines. The paper outlines a three-step approach with recommendations for detecting bots, notifying users that their computers have been compromised, and guiding them in removing the malware.

(Logo: http://www.newscom.com/cgi-bin/prnh/20070124/CLW180LOGO )

Bots, or malware running on users' computers without their knowledge, are responsible for generating up to 90 percent of spam and can also be used to steal personal information or take part in DDOS (distributed denial of service) attacks. MAAWG Common Best Practices for Mitigating Large Scale Bot Infections in Residential Networks (Version 1.0) outlines strategies used by some of the largest ISPs worldwide yet was developed to be scalable for smaller network operators and to consider legal and process differences among countries.

"Bots are a global affliction and these best practices are an important step in educating the industry on the appropriate processes to help protect consumers. We're sharing the experiences of our global membership so that network operators everywhere can more aggressively tackle this problem. As an industry, we are becoming more proactive in alerting customers when bots are detected on their computers and in helping users remove the malware before it can harm them," said MAAWG Chairman Michael O'Reirdan.

The new best practices outline various options for alerting customers when their computers are infected and has suggestions for helping end-users clean their systems. The paper discusses bot detection methods, customer notification, and the use of walled gardens to limit infected machines' exposure to the Internet. Among the recommendations:

  • While protecting users' privacy, network operators can use various tools to detect infected end-user computers, including DNS, scanning the IP space to identify vulnerable computers, and collecting IP traffic information for known command and control addresses.
  • Email, phone calls to customers, postal mail and walled gardens are common notification tools, each with their own considerations.


Related Stories





Subscribe to Email Alerts

 
(0)
No Comments
Post Comment
Name:  
Alert for new comments:
Your email:
Your Website:
Title:
Comments:
   
 
 
 
 
   
 

  
Related Press Releases
Advertisement
Popular Articles
Advertisement
Partner Center
Home | Login |Research | Earnings | Scans | Chat Rooms | Charts | Submit Article | Join Blog Network | Advertise | Subscribe to RSS

copryright 2009 all rights reserved
Fundamental data is provided by Zacks Investment Research, market data is provided by AlphaTrade. , and Commentary and Press Releases provided by Quotemedia