Network News

X My Profile
View More Activity

Major Source of Online Scams and Spams Knocked Offline

A U.S. based Web hosting firm that security experts say was responsible for facilitating more than 75 percent of the junk e-mail blasted out each day globally has been knocked offline following reports from Security Fix on evidence gathered about suspicious activity emanating from the network.

For the past four months, Security Fix has been gathering data from the security industry about McColo Corp., a San Jose, Calif., based Web hosting service whose client list experts say includes some of the most disreputable cyber-criminal gangs in business today.

On Monday, Security Fix contacted the Internet providers that manage more than 90 percent of the company's connection to the larger Internet, sending them information about badness at McColo as documented by the security industry.

On Tuesday afternoon, I heard back from Global Crossing, one of McColo's major Internet providers. Their spokesman declined to discuss the matter, except to say that Global Crossing communicates and cooperates fully with law enforcement, their peers, and security researchers to address malicious activity.

Two hours later, I heard from Benny Ng, director of marketing for Hurricane Electric, the Fremont, Calif., company that was the other major Internet provider for McColo.

Hurricane Electric took a much stronger public stance: "We shut them down," Ng said.

"We looked into it a bit, saw the size and scope of the problem you were reporting and said 'Holy cow! Within the hour we had terminated all of our connections to them."

As of this writing, McColo's Web site is no longer available. In fact, I pinged no fewer than three different researchers who have tracked activity at McColo for many months: None could find a single Internet address assigned to the hosting provider that was still reachable.

Officials from McColo did not respond to multiple e-mails, phone calls and instant messages left at the contact points listed on the company's Web site before the site was taken offline.

There's more to come with details about this story later tonight or early tomorrow, but I wanted to get this post published before we got scooped on our own story.

By Brian Krebs  |  November 11, 2008; 7:06 PM ET
Categories:  Cyber Justice , Fraud , From the Bunker , Web Fraud 2.0  
Save & Share:  Send E-mail   Facebook   Twitter   Digg   Yahoo Buzz   Del.icio.us   StumbleUpon   Technorati   Google Buzz   Previous: Pharmacy Processor Offers $1M Reward to ID Extortionists
Next: Spam Volumes Drop by Two-Thirds After Firm Goes Offline

Comments

Well done sir. You have made life for most Americans much, much better. There is a bust for you in the good guy hall of fame (right next to the person who invented EZ Pass).

Posted by: tderrick17 | November 11, 2008 7:48 PM | Report abuse

Nice work! Another reason we need a fearless and unfettered press. We'll never know how much misery you've saved people, but with the government busy with other things, it's nice to see you make a difference in such a positive way.

Posted by: PunditFan | November 11, 2008 7:51 PM | Report abuse

I also see this as a good development, but isn't the media supposed to report the news, rather than creating the news?

Posted by: stj4d | November 11, 2008 7:56 PM | Report abuse

Fine work, Brian. It is distressing, however, to see Global Crossing's response. Even a common carrier has a responsibility to society to help stomp out child pornographers and identity thieves. To look the other way is to be complicit in such criminal activities.

That said, my fear is that some morally bankrupt host in the former Soviet block or China will happily take McColo's sleazy business.

Please keep up the great work.

Posted by: none3 | November 11, 2008 7:56 PM | Report abuse

Amazing work. Congrats to the third power!

Does anyone anywhere maintain a spam volume chart to keep track and report to the public?
If so there must be at least a temporary cliff dive in spam volume. Has anyone documented it?

Hurricane Electric's response seems genuine and was certainly decisive! Is it common for industry players like them to be unaware of what harm they may be involved in?

Congrats again.

Posted by: featheredge9 | November 11, 2008 9:00 PM | Report abuse

Excellent investigative journalism. Thanks.

You just saved millions of people from wasting untold hours dealing with the detritus of the internet. I can't thank you enough.

Posted by: FishOutofWater | November 11, 2008 9:01 PM | Report abuse

Great stuff, thank you for your efforts.

Posted by: JkR- | November 11, 2008 9:11 PM | Report abuse

@featheredge9:
>Does anyone anywhere maintain a spam volume chart to keep track and report to the public?
If so there must be at least a temporary cliff dive in spam volume. Has anyone documented it?

Based on SpamCop, I'd say the HurricaneElectric heroes cut off the sewage flow at about 16:30 EST Tuesday

http://www.spamcop.net/spamgraph.shtml?spamweek

Posted by: moike | November 11, 2008 9:41 PM | Report abuse

Brian - Well done, and well reported.
For the user who asked about reporting news versus creating news, you misunderstand Krebs's reporting. Like most good reporters who write big stories, he either got tips or analyzed data regarding spam and cyber-security. It probably was a combination of both. If he determined from his research, reporting and analysis that this data was coming from one place, he did not create a story by informing the spam host's business partners. Rather, he sought comment from them about this site, and they took action.
What Krebs reported is not a big a story as Watergate, but what do you think Woodward & Bernstein did? Wait for a press release? A regulatory filing? No, they took one news event, worked backwards from it, and determined that something big was going on -- just like a spammer. Then they wrote about it, just like Krebs did.
When Henry Blodget on Silicon Alley Insider wrote that The New York Times Co faces several possibilities for survival, he did not tap into a planned news event. He analyzed a balance sheet and made conclusions.
Much of the news that comes out is because beat reporters see connections and draw conclusions that are not opinion, but reasoned and accurate viewpoints based on evidence out there that resists coalescing into a larger news event because most of us don't get it. That's why we have journalists, and this is a great example of that.
And now for the full disclosure: I'm Robert MacMillan. I am a reporter at Reuters who covers the journalism business, and I worked at washingtonpost.com for many years with Brian. I sat right across from him so I know what he eats for lunch.

Posted by: easymac | November 11, 2008 9:45 PM | Report abuse

Great work!!!

I always wondered why it wasn't more common that upstream providers could not shut down these type of scumbags!

Posted by: elmgator2 | November 11, 2008 9:56 PM | Report abuse

Who-hoo - hope they can fully document (backup tapes) what was coming from there and keep them out of business for a long time.

Posted by: mike21 | November 11, 2008 10:01 PM | Report abuse

Dude -- If you were here I'd give you a big huge hug!

But what's up with Global Crossing? They that hard up for a dollar that they have to support those evil people or what?

Great work!

Posted by: saj_pratt | November 11, 2008 10:04 PM | Report abuse

>>>Based on SpamCop, I'd say the HurricaneElectric heroes cut off the sewage flow at about 16:30 EST Tuesday

Pretty close! It happened at 16:23:17.994627 EST

Posted by: alanstein | November 11, 2008 10:08 PM | Report abuse

Well, don't discount any actions that may or may not have been taken by Global Crossing. When we first wrote about the badness at Atrivo, Global Crossing was the first of their many upstream providers to pull the plug. They just never told anyone till after the entire network was dark.

Secondly, if you trace some of these McColo IPs that were once downstream of Global Crossing, you will see that they now die inside of GC, which indicates the company is doing some sort of filtering on those IPs (there is no indication yet that they have dropped McColo entirely from their routing tables as of yet, but this could change soon).

Posted by: Brian Krebs | November 11, 2008 10:10 PM | Report abuse

This makes me very happy.

Now if only the US Government would get as concerned about this....

Posted by: Pete_from_nyc | November 11, 2008 10:11 PM | Report abuse

Well done! I haven't been getting much spam lately anyway but this should reduce it even further. We are all ever so grateful.

Posted by: jetfan85 | November 11, 2008 10:25 PM | Report abuse

You are a genuine Americn Hero Sir!

Things like this and the FBI's "Operation Bot Roast" are what give us internet users the hope that we won't have our life savings, oour good name, or our kids stikeb from us by criminals.

And if you know anybody at the FBI, or if they're listening - which might not be a bad thing, given some of the fine folks that post here - I have a Thanksgiving Request - "More Roast Bot, Please!"

We're hungry for a solution the the problem of spam which we find very distateful.

A steady diet of arrests of Hackers and tender, jucy press releasees about their arrest will keep us all well fed.

Arrests, seasoned with a heaping helping of media coverage, of people who steal over the internet or turn people's machine's into bots would be especially delicious.

We're always really hungry for it.

These are really bad guys.

If you're 100% sure of who you've got, and it has to be 100% in this case, we won't mind if you give them the treatment that more conventional "blue collar" criminals receive, especially when they are taken and held for questioning.

These guys are criminals and should be treated that way, but for God sakes, guys, please, please make sure you've got the right guy.

Anyway, Brian, we, your readers, would love to see you do a book like "The Cuckoo's Egg", and I bet you'd enjoy going on John Stewart and Steven Colbert.

Anyway, Thanks again, and please keep taking down the bad guys.

Maybe you can get some bright computer scientists to work with you to automate what you did (or write the code yourself) so you can take down bad guys in bulk, taking down the next smaller bad guys and the next ones after them and so on.

If you could cut spam down to 10% of what it is today, Obama should buy you lunch and a medal to go with it.

Thanks Again!!!

Posted by: svreader | November 11, 2008 10:29 PM | Report abuse

Good gracious, Robert. Nice to hear from you and thank you so much for the kind words.

Robert is being self-deprecating as usual. He was my editor for several years, and of course knows quite a bit about this business.

I believe he's spot-on about one thing in particular: I'm not breaking news so much as aggregating what people a lot smarter than me have already said but in disparate and far flung forums. The real credit for this should go to the unsung researchers and security experts who are forced to wade neck deep in this crud every day.

Posted by: Brian Krebs | November 11, 2008 10:36 PM | Report abuse

Brian,

You are way too modest.
You've done something truly amazing.
If someone would have told me that taking down a single company could cut down on spam by 75% I would never have believed it.
I'm serious about the stuff in my post.
Anything you can do so that we can have anti-bot bots or any other automated system would be great, and I bet you've got more than enough material from this story or this plus some others to make a really interesting book!

Posted by: svreader | November 11, 2008 10:44 PM | Report abuse

I don't know how it will appear in the print version of the Post, but I think this should be the #1 lead story, with a humongous-type headline.

This is in the finest tradition of investigative journalism serving the public interest.

Outstanding work, Brian.

Posted by: IceNine | November 11, 2008 11:13 PM | Report abuse

This is, of course, great news. But I am afraid the fact that they shut down does not prevent them from popping up someplace else with a fresh new name, fresh new IP addresses and the same old client list. The key will be in following them around and keep shutting them down. Then they will probably go outside the USA. This is simple a small respite. If their is a profit to be made they will figure out how to keep popping up. But until that day I will enjoy this victory and hope it lasts at least a few weeks. The harder (and hence more expensive) the large ISP's make it for them to come back online the sooner we will be rid of them.

Posted by: rcc_2000 | November 11, 2008 11:15 PM | Report abuse

Brian, we're really proud of you, kid.

I agree completely with the guy who says this should be front-page news in the dead tree edition and with an "easy eye type" headline!

I wasn't kidding about the importance of press coverage of the operations that take these guys down.

Its the Reporters, Security Experts, FBI, etc, that are the "stars" not the criminals.

Too often, all you guys work incredibly hard and only have yourself and close associates to sppreciate it.

I hope the you guys, the people at the national network security center, the FBI, etc, all know how much ordinary citizens appreciate the work you guys do to stop internet criminals.

That's incredibly important.

Let's hope Obama increases funding for securing the internet.

Unlike Bush, he knows that its singular, not plural!

Posted by: svreader | November 11, 2008 11:37 PM | Report abuse

I just checked the graph on my spam blocker. Exactly one piece of spam was sent to my email address Tuesday. Great work, Brian.

Posted by: rashomon | November 12, 2008 12:05 AM | Report abuse

some more info on Mccolo and these botnets connections..

http://blog.fireeye.com

Posted by: visioneast | November 12, 2008 1:19 AM | Report abuse

Great job, BK! Now, let's get that remaining 25%!

Posted by: Russ_Walker | November 12, 2008 1:24 AM | Report abuse

So far, a job well done.

Congratulations !!!

Posted by: brucerealtor@gmail.com | November 12, 2008 1:24 AM | Report abuse

This is investigative journalism at its best. Congratulations Brian!

Posted by: Dawny_Chambers | November 12, 2008 6:57 AM | Report abuse

First: thank you for this story. Fantastic news.

Second: since you have managed to make contact with Global Crossing, you may want to remind them that people like me have also been reporting a diploma mill phone number which they are also the provider for (718-989-5740). It's been prolifically spammed since May of this year and they have never, ever responded to a single complaint about this number. Fake diplomas are a definite scam. (Would you like to be operated on by a "surgeon" who had one of these?)

Great news all around though. Thank you.

SiL / IKS / concerned citizen

Posted by: killspammerz | November 12, 2008 9:23 AM | Report abuse

What awesome news! You guys are outstanding, power to the press baby!

Posted by: johnalexgolden | November 12, 2008 10:46 AM | Report abuse

I run a very small domain of users and for the past month have been following the *small* (40 - 60k per day) selection of junk inflow to it. I can not only say that I have not noticed any reduction over the past several days but it has grown slightly over the past 3 days. Still, that is no reason not to cheer the removal of such scum, even if only temporarily, from the net.

If they do manage to flee to some 3rd world hole I would think that pressuring hi level provider to stop peering would be a route to go to keep them shut down.

Posted by: No11 | November 12, 2008 10:48 AM | Report abuse

Where is the government? Why didn't they take action long before this?

Where is the security industry? Why didn't they take action long before this?

Those strike me as questions deserving in depth stories in of themselves.

Three cheers,

--Beman

Posted by: bdawes | November 12, 2008 11:03 AM | Report abuse

Wow, that is freaking awesome! Go you!

Posted by: theamazingjex | November 12, 2008 11:21 AM | Report abuse

It's sad that it takes a major newspaper like the Washington Post raising alarms before the major upstream providers like GBLX and HE will kick folks like McColo off the internet, but good going Brian. It's good to see tech journalists taking their responsibility to investigate and inform seriously and actually accomplishing something for the public good.

To echo the sentiments of others, where is the government? We hear a lot about our armed forces and intelligence agencies scrambling to mount a "cyber defense", but they're not paying attention to places like McColo which are pulling the strings of massive botnets that could potentially be used to mount the same kind of attacks they claim to be concerned about.

Perhaps fodder for a follow-up piece later? :)

Posted by: mgrazi3 | November 12, 2008 11:35 AM | Report abuse

Brian,

While this is a good short term improvement the result of this are completely useless...

Let me explain why.

These perpetrators will simply move to other networks and become more disperse and harder to track.

NO individuals or named organizations where identified in this report

NO intelligence was revealed to identify and LAMBAST them in the court of public opinion

I saw NO law enforcement arrests. For the type of activity you a describing it would be a big RICO case. I think its a travesty that law enforcement has not used RICO laws to prosecute organized cyber operations of the scale and scope that is occurring today.

The penelties that are currently being meted out by our courts are a freaking JOKE
Big guys with major crimes get like 4 years or less. Even with the most egregious of ID theft, intellectual property theft and spying.

I see NO evidence of organizational infiltration to get intel on the bad actors, conduct sting operations, the luring and aprehension of suspect bad actors, the Arrest and Leaning on suspects to roll on their superiors of the network similar to how they do it in organized crime and drug networks.

Until you start treating cybercrime like real crime alot of this stuff is neat from improving the Cyber world by temporarily dispering the activity and allowing researchers to observe and monitor elsewere and report on new trends.

NO evidence of using cyber methods aside from research to exploit, and attack malicious cybernetworks, identify their drop sites, and attack their systems.

If you want advice on how to really make an impact contact me zeberlein_michael@hotmail.com

Posted by: mzeberlein | November 12, 2008 11:45 AM | Report abuse

Good work!
According to http://www.lerfjhax.com/as/26780, there are two other peers that need to be cut off - Cogent and Telianet.

Posted by: Peter_Quirk | November 12, 2008 11:51 AM | Report abuse

Additionally

No investigation was done into the finances of MColo or their paying clients

How about naming their clients

How about identifying their corporate leadership,

How about the location of their facilities, the names of their operators and adminstrators, the financial assets and addresses of their companies leaders

How about an audit of their cashflows and a listing of their clientele.

You get my point. Even bad guys dont like being exposed to the light of scrutiny.

Posted by: mzeberlein | November 12, 2008 11:52 AM | Report abuse

This action really points to the need to establish an international "Internet Use Commission" armed with enforcement powers and agreed-up rules of RAPID action to regulate the Internet in order to provide fair, free, and unabusive service to the entire world. Preserve neutrality? Yes, by all means, but serious regulation is as badly needed here just as much as it is now obviously needed in the stock markets and financial markets as well.

Posted by: toketeeman | November 12, 2008 12:05 PM | Report abuse

My spam has been cut in half. Thanks.
Here is a graph
http://www.zombienet.info/spamgraph1.jpeg

Posted by: anthrovolution | November 12, 2008 12:23 PM | Report abuse

Brian,

This is great news!

The unfortunate truth is that as indicated by others in previous post, these
criminals will likely move on to other hosting providers who may be less
inclined to take proper action.

This is where I hope you will help by passing along some very important
information to your readers and asking them to become INVOLVED.

As you may know ICANN (the people who REGULATE Domain Names & Numbers) is currently reviewing policy regarding Registrars (the people who SELL Domain Names). The current policy requires anyone buying a domain name to provide "complete and current contact information" and that is good, but it
leaves enforcement of this policy to the REGISTRARS... duh????

MAN OF THE REGISTRARS THEMSELVES ARE ANONYMOUS...

A number of REGISTRARS are operating with INVALID or FALSIFIED contact information, some only show a Postal Drop Box, while others work off of an e-mail address and provide no valid way for law enforcement or anyone else to reach them.

A number of these REGISTRARS have CONNECTIONS to PROVEN CRIMINALS, some with OWNERS/CEO's that have been convicted of various cyber crimes (child
porn, drug sales, identity theft etc.)

The existing policy is as effective as leaving the fox to guard the hen
house...

You and your readers can help change this by sending a "polite letter or
e-mail" to ICANN, "insisting" that the REGISTRAR ACCREDITATION AGREEMENT be Updated, or Amended to include language similar to the following:

"All Accredited Registrars must submit main office location, including
country, to be publicly disclosed in ICANN web directory. Post Office
boxes, Incorporation addresses, and mail-forwarding locations will not be
acceptable. Registrars must also provide for public display the name of CEO
or President. ICANN must be notified within 30 days of a location or
presiding officer change.”

You can find postal and e-mail addresses for ICANN on their website
ICANN.org

Once again Brian...

THANK YOU for helping to expose this criminal activity. I have been reporting this type abusive activity to Hurricane and other host for a very long time and am convinced they (Hurricane) took much swifter and decisive action because you presented the evidence and they knew it was going to go public.

Sincerely,
Gary

Posted by: wokndadog | November 12, 2008 12:25 PM | Report abuse

I know I'm not be popular with this position but, if anyone can shut off Internet communications unilaterally without the benefit of a judiciary process, then freedom of speech is at risk. Like it or not, spam is a part of speech. You may find the content reprehensible and disturbing but, it is still speech and people have a right to speak. The other half of free speech is the freedom to listen or to choose to not listen.

How would I deal with something like spam? I would look for a distributed, nondiscriminatory solution that increases the opportunity cost for spammers so through a natural economic mechanism, their activity becomes unprofitable. Take a look at hashcash.org for one of the components. Used properly with a reputation engine, there is little or no affect on legitimate users but a very large effect on spammers and commercial advertisers. If you want to talk about it, you can find me on the hashcash mailing list.

Posted by: esj1 | November 12, 2008 1:04 PM | Report abuse

thanks - what makes ME want to vomit is how many people apparently justify dishonesty,distortion, deception and really, whatever they damn well please under the guise of "business" or making money. GROSS. WHAT is WRONG with these sick, messed up "people"???? Are you so disgustingly self centered, selfish and greedy, are you SO desperately in need of material things and $ that you feel it's okay to do whatever you WANT and SCREW whomever you please? its SICK. Be GLAD you don't encounter ME, because MY wrath and fury would be significant. Cease and desist! be honest! HELP other people, don't HURT them! it's just so blatantly obvious. Hard to believe people like this walk around able to even live among us and meet our gazes and hold their heads up. SICK, sick sick. YECCCH.

Posted by: hkindt | November 12, 2008 1:34 PM | Report abuse

GREAT JOB!!!

But Brian, do you ever worry about your safety with this stuff? I am sure you have p/o'ed a lot of ugly characters...is this a concern for you?

Keep up the essential and important work!

Posted by: arizzo2 | November 12, 2008 2:13 PM | Report abuse

While I congratulate Brian for executing his ability as the "third" force, making law enforcement and ICANN look as the "toothless nannies" they seem to be, the problem will NOT be solved until much needed laws are being set up. We will see russian cybercrime take its beatings but their money laundering has already gone further than any LE would allow himself to dream in his worst nightmares: they are opening banks, issuing creditcards and are undermining the industry in such a big scale, that there is no more way out!

As long as LE is looking the other way, as long as the organized crime structure is not fully investigated, as long as terrorism and child porn are the only issues where LE jumps in, as long as e-commerce is being let loose as it is, we will not see a change! McColo will be back under another name, ICANN will take money from russian cybercrime mafia members for top level domains and drink their champaigne on the parties they are invited to...business as usual....

Still a small victory and keep up the good work!!

Posted by: roflem | November 12, 2008 3:54 PM | Report abuse

And to illustrate what I presume this did. I am the email administrator for a University. The below link is what our spam charts looked like today when I showed up for work.

Impressive to say the least.

http://picasaweb.google.com/DustinAK/Misc#5267899458319552578

Posted by: dustinak | November 12, 2008 5:26 PM | Report abuse

While it's good news that they did get shut down, one really has to wonder how they could've operated within the US for YEARS with that sort of activity going on inside.

Things are not quite adding up.

Global Crossing and Hurricane Electric couldn't have possibly been unaware of this. I have a hard time believing the FBI was unaware of them either.

Posted by: gorbachev | November 12, 2008 5:57 PM | Report abuse

esj1 - Your defense of the First Amendment is admirable, but I believe it is slightly misinformed.

In my understanding (and I'm sure someone will correct me if I'm wrong), what McColo did was not simply "spam" in the sense of sending out unsolicited e-mails. Its activities included hosting and perpetuating illegal and dangerous activities, including viruses, worms, etc., fake pharmaceuticals, fraudulent products and possibly child pornography. Companies like Global Crossing and Hurricane Electric are well within their rights (and some would say are morally obligated) to "unilaterally" turn off access if their services are being used for illegal activities.

Were McColo simply "speaking" it would be one thing. But using bots and e-mail to hijack computers, steal information, sell fake and dangerous products and so on is not covered under free speech.

Posted by: mlflint | November 12, 2008 7:25 PM | Report abuse

Seriously, thank you, thank you, thank you!

When I looked at my junk e-mail folder this morning, I had received a mere 79 e-mails while I was sleeping. I normally see over 250.

I initially panicked thinking one of my e-mail servers went offline!

The trend has continued throughout the day. I've only seen a little over 100 SPAM messages today.

You deserve a medal, an award, maybe even a cash prize!

Posted by: Knowzy | November 12, 2008 7:38 PM | Report abuse

What's with people claiming that spam is some sort of free speech right? Sending spam is no different than breaking into the Washington Post's computers and putting in an ad, even without the spammer committing any explicitly illegal acts.

(Which isn't to say there's much spam out there where the spammer is that straightforward. They almost invariably forge headers, spam through zombies, sell prescription drugs without a prescription, etc.)

Posted by: MrMorden | November 12, 2008 8:31 PM | Report abuse


Wouldn't Global Crossing be leaving itself open to a class-action multi-billion dollar suit if it fails to shut off McColo after it has been given evidence that it is a problem child? It seems like every major (and minor) company in the nation would be on board that one. Very dangerous game they are playing.

Posted by: miraweb | November 12, 2008 8:38 PM | Report abuse

If you aren't a technology guru (and working in IT doesn't make you one, or managing technology for that matter) then you have no competence nor business advising people on how to solve this problem. The 'I have the answer' people are almost exclusively incompetent in these matters. Half of them are benefiting from the spam-or benefiting from 'fighting it'. You can't fight spam. It doesn't work like that. The best you'll ever be able to do is avoid spam in the first place. This reduction in spam isn't real-even if some people happen to see some temporary reduction. To avoid spam you have to be competent and NOT give out your email address in the first place. Using throw away addresses like mytrashmail, or forwarding addresses unique to each person you give your address to works better in that you can disregard mail from addresses where you start receiving spam without effecting the ability to receieve mail. You also need to realize how spamers get your email in the first place. They it when you post your email address online in a text format. For instance these posts should not contain anybodies email. If you are posting your email here and think you have the solution to spam you are an idiot. Pure and simple. Any by the way having a Hotmail account just furthers the sterotype Microsoft users are technically incompetent. It might be true... but lets stop propigating it as I'm sure there must be at least a handful of people who don't fall under that sterotype. Posting an address that spammers can't easily harvest is esential to posting an address on a forum and not getting on spamers lists as a result. Here is a better way to do it "If you have information for me, please email it to john.doe at hotmail dot comy minus the y. "

Posted by: tmail25 | November 12, 2008 9:50 PM | Report abuse

easymac said:

For the user who asked about reporting [...] I worked at washingtonpost.com for many years with Brian. I sat right across from him so I know what he eats for lunch.
[eq]

So, as long as we're on the subject, what does he eat for lunch?

And don't say spammers...too obvious.

Posted by: ibsteve2u | November 12, 2008 10:58 PM | Report abuse

Even I see a decline in spam today. Isnt it weird, that Brian has to call the connecting hosters to make them shut down mccolo?

Wouldnt it be time to investigate the kickback payments to the upstreamers who can charge for the bandwidth? Since we all know that spam is NOT generating income by idiots clicking on it, why doesnt anybody investigate the generated bandwidth issue?

Somebody is making money because of the spam bandwidth....lets find out who it is.

Lets hope the new spam-hosting setup will be identified soon and this can be repeated quicker.

Posted by: roflem | November 13, 2008 10:01 AM | Report abuse

Posted by: lynch143143 | November 13, 2008 2:27 PM | Report abuse

I DONT HAVE SPAM TODAY!!!!!!!

http://www.spamcop.net/spamgraph.shtml?spamweek

YAHOOOOOOOOOOOOOO!!!!!!!!!!!!!!

THANK YOU!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

Posted by: whois7 | November 13, 2008 5:36 PM | Report abuse

http://www.3dnews.ru/_imgdata/img/2008/11/13/102581.gif

Number of spams. Daily Graph. Wed 12/Nov/2008

Posted by: whois7 | November 13, 2008 5:42 PM | Report abuse

Awesome work, Brian! According to this article, spam has been reduced by 75%!

http://www.thewhir.com/marketwatch/111408_McColo_Shut_Down_Halts_75_of_Spam.cfm

Posted by: swalsh1 | November 14, 2008 11:51 AM | Report abuse

I am so happy, I don't like anyone that wants my money.
I would very much to still be able to see porn on my internet.
why is there any problem with seeing think that i want?
child porn was how my life began, I like to see others, what could be wrong with that?
the taking of of ones cloths and touching is what life is all about, the people that take money from other people are the crime

Posted by: leroy_slater | November 16, 2008 3:23 AM | Report abuse

I can only hope that 'perfspot' was one of these. they can into my inbox but always say that i was out of thier area because i choose to live in the philippines. they only wanted money from people that where in side the boarders of the usa, because then they could do bad to my bank account

Posted by: leroy_slater | November 16, 2008 3:26 AM | Report abuse

The comments to this entry are closed.

 
 
RSS Feed
Subscribe to The Post

© 2010 The Washington Post Company