Having run about 5 IRC networks before, I know that you're right, the government doesn't really do much. the NIPC (National Infrastructure Protection Center) has a policy of not getting involved unless the damages exceed 1 million dollars. But, what is more astonishing is the people affected first hand do even less. In one DoS attack, I was able to trace some of the attack back to about 15 pcs at Arizona State University. So the first thing I did was alert them that their machines had been compromised. About 3 weeks later I get an email saying "A trouble ticket has been issued to address the problem, you should hear back from us in 1-2 days" well it's now been about 5 months and I still never heard back. And, I know for a fact that the machines are, today, still compromised. So I guess what I'm getting at is, if the people who are infected don't care... why should the government?
