New worms spreading!

Collapse
This topic is closed.
X
X
Collapse
 
  • Page of 1
  • Time
  • Show
Clear All
new posts
Previous template Next
  • Kevin P
    Member
    • Aug 2000
    • 10808
    #1

    New worms spreading!

    There are a number of new worms spreading that take advantage of the MS05-039 Plug and Play buffer overflow vulnerability to spread. Two of the fastest spreading ones are W32.Esbot.A and W32.Zotob.E. (Links take you to Symantec writeups).

    Although Zotob can only infect Windows 2000 boxes, Esbot can infect any Windows box including XP, though I'm not sure if XP SP2 is affected.

    Make sure to keep your patches and anti-virus up to date!
    Tags: None
      • Bottom
    • Lex
      Moderator Emeritus
      • Apr 2001
      • 27461
      #2
      I heard that organized crime is now behind many of the viruses and worms hitting computers these days. I guess money laundrying has taken on a new dimension?

      Doug
      Doug
      "I'm out there Jerry, and I'm loving every minute of it!" - Kramer
        • Bottom

        Comment

        • Kevin P
          Member
          • Aug 2000
          • 10808
          #3
          Well, there is a money motivation behind a lot of them nowadays. In the past, hackers wrote worms/viruses as a cheap thrill, or to see how far they would spread. Now, spammers hire virus writers to create worms that infect computers to make them into spam relays and backdoor servers for hosting pr0n and spam and stuff like that. Also, such proxies can be used to hide illegal activity such as phishing and hacking.

          So to a degree, there is an organized crime factor behind at least some of the worms. Spamming is a bigger factor.
            • Bottom

            Comment

            Previous template Next
            Working...
            Searching...Please wait.
            An unexpected error was returned: 'Your submission could not be processed because you have logged in since the previous page was loaded.

            Please push the back button and reload the previous window.'
            An unexpected error was returned: 'Your submission could not be processed because the token has expired.

            Please push the back button and reload the previous window.'
            An internal error has occurred and the module cannot be displayed.
            There are no results that meet this criteria.
            Search Result for "|||"