Nothing to be proud of, but due to recent studies, Germany seems to have one of the largest infections of malware in the world. Thus, it is not surprising that the federal police has taken down an important German botnet network around the l33t crew. The members of this group, a lot of them still minors and living at their parents’ place, committed cybercrimes and shared their retrieved information via forum in order to make some quick money. Additionally, one could rent their botnet in order to do some nasty stuff with the zombies. Having obviously found a Leitbild in their Russian counterpart, they adapted the name from the Russian Business Network and named themselves German Business Network.
Not only did the police take down a large botnet but also caught most of the members by surprise which did not allow them to encrypt their data. It will be interesting what the police is going to find on their hard discs. ISPs, the Association of the German Internet Industry (eco) and the Federal Office for Information Security (BSI) presented and project which should help and offer support to private organisations facing botnet-related problems. Staying sceptical is always a good thing when it comes down to projects like this one. Soon after this project has been presented, the first voices were raised, linking these measures to potential forms of Internet traffic control. Having some basic knowledge on the boss of BSI Mr Ziercke does not leave any doubt that these concerns might become awful truth even though eco declined any ‘wrong’ intention. Let us see what happens next.
Similar things are going on in the US. The Department for Homeland Security (DHS) has presented its project concerning a cyber incident response plan. For the draft version different state agencies and partners from the industrial sector worked together, caring about the rising problem of cybersecurity. Hope their plans and exercises help.
As examined in earlier articles, the Ango-American society is well-aware of what they are facing and therefore working in measures to apply in order to do something about it. Normally, I would argue that Germany is far behind but not in this case. It is however true that the topic is not as hotly-discussed in Germany as in the US but the recent events show that the thinking changes. Especially for the German industry it is massively important that something is done to fight cybercrime.
The problem is as always: You have to find the right balance between liberal rights and security. Losing freedom while gaining security is never an option. In the last ten year, people in the ‘western industrialised world’ already gave up a lot of their privacy and freedom for the s(f)ake of security, do not make it worse!