madison
Home / News & Blogs

US interested in Aussie 'zombie' code

Ben Grubb ZDNet Australia | June 28, 2010 7:29 AM PDT

Summary

Australian security experts took their e-security code of conduct to the White House, where it met with Barack Obama's cyber-security coordinator, Howard Schmidt.

Topics

e-Security Inc., Zombie, Cybersecurity, Internet, Internet Service Providers (ISPs), Security

Australia's Internet Industry Association (IIA) took its e-security code of conduct to the White House, where it met with Barack Obama's cyber-security coordinator, Howard Schmidt, to discuss it as a potential model for the US internet industry to adopt.

Informally known as the "zombie" code, the IIA released its e-security code of practice to internet service providers (ISPs) earlier this month in Australia, outlining ways they could protect their subscribers and inform them about being infected with malware. A "zombie" is a malware-infected PC.

One suggestion within the code is to put infected users into a "walled garden", which limits internet access to prevent further security problems until quarantined. Another option is to throttle the speed of an infected users' internet connection until their computer fixed.The code is voluntary for ISPs to adopt and will come into effect by December.

For more of this story, read US interested in Aussie 'zombie' code on ZDNet Australia.

Talkback Most Recent of 8 Talkback(s)

  • RE: US interested in Aussie 'zombie' code
    This whole idea of sequestering or quarantining compromised PCs sounds good to me in principle. The one caveat I have is how to keep from having false positives. If it can be demonstrated that bandwidth reduction, or access limitations, affects only those users who have zombies on the ISPs network, then I'm all for it in practice as well. It's past time that infected PCs be limited in the damage they can do. _Way_ past time!
    ZDNet Gravatar
    Den2010
    28th Jun 2010
  • RE: US interested in Aussie 'zombie' code
    @dbarr@... I agree it sounds good in principle. It also a matter of how fast a user is notified about the malware, quarantine and whether the user can correct the problem or allowed access to applications.
    I suspect most users on "zombie" PCs don't know they are and don't have the tools or knowledge to eliminate the malware. They should be notified that they are denied sending email but not denied receiving email and the ISP provides this quarantine area and tools to eliminate the malware.
    ZDNet Gravatar
    ugluk
    29th Jun 2010
  • RE: US interested in Aussie 'zombie' code
    @dbarr@... G'day

    My ISP in Australia already has a similar system. One time, my web browsers would redirect to their website automatically, with a page saying i had a virus. Although I didn't (p2p probably triggered their systems), a simple click of the "I have fixed this problem" button and the access was restored. So it's not too impacting except when you're away and relying on remote access.
    ZDNet Gravatar
    fabioti
    29th Jun 2010
  • RE: US interested in Aussie 'zombie' code
    Oh, I'm sure the ONLY thing they're going to be looking for is to see if your pc is a zombie...
    ZDNet Gravatar
    mseyf
    28th Jun 2010
  • This is already policy with some ISPs
    @mseyf & hello Grommit happy

    I have used ISPs that have a policy like this.

    They look for a larger than normal volume of traffic of the type sent by zombies or spammers and then block ports - the 'walled garden'.

    In these cases a phone call to their support department explaining that the traffic is genuine has resulted in a quick removal of the blocking.

    This is for me a much better approach than blanket blocks on ports with no option for change.
    ZDNet Gravatar
    richardw66
    28th Jun 2010
  • RE: US interested in Aussie 'zombie' code
    A walled garden or other short term security move should be fine but an explanation, either email, web or phone call should be made explaining the problem and recommending remedial steps. Decreasing speed seems like punishing the victim.

    The problem is that if the government gets involved then it opens up questions concerning liability. Will ISPs be sued for damages if their customers get infected? I would suggest that if the government makes an industry recommendation and it's not followed...there is certainly potential.
    ZDNet Gravatar
    dennisfurr
    28th Jun 2010
  • RE: US interested in Aussie 'zombie' code
    I dont' like it, while it seems cool in theory I think it's too intrusive, instead why not make it required to have an active and updated virus protection suite running before allowing internet access. I think that would one force everyone to get a suite and two reduce the overall cost of virus protection software for everyone since every pc will have to pay for it.

    I would go as far as adding the 1 year cost of virus scanning software as part of the pc package and informing consumers about the rules regarding their use. For users to don't comply then you can check their machines for Zombies and such.

    From my experience it's the people who know the least about these things that are most at risk and most likely to have something on their machine they don't know about until it's Bluescreen time.
    ZDNet Gravatar
    DS-Solutions
    29th Jun 2010
  • RE: US interested in Aussie 'zombie' code
    How will it work if the user has a few computers on their network and only 1 is "zombied"
    ZDNet Gravatar
    vaughanm
    29th Jun 2010

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity