Hunting Hackers' Haunts
Oak Ridge National Labs is doing something I assumed had already been done -- trying to find out what ISPs and networks are favored hacker hunting grounds. The idea is that prevention and forensics work can be focused on these areas, rather than wasting time on clean networks.
The research is all based on analyzing blacklists and tracing rogue IP addresses back to their hosts. They've already found 3 ISPs that are responsible for some 6 percent of addresses on the blacklist. These guys have a lot of cleaning up to do!
Posted on March 17, 2010