Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Microsoft SQL Server Worm

Posted by timothy on from the worms-crawl-in-and-the-worms-crawl-out dept.

Ian Bell writes: "A new unnamed worm has been released and, once again, Microsoft software is the target. More specifically, this new worm targets Microsoft SQL servers with no administrator passwords set. Once the server is infected, it logs onto Internet Relay Chat (IRC) servers and is ready to receive commands and act accordingly. Although this can be a fairly malicious worm, it is very unlikely to infect many servers due to the fact that majority of Microsoft SQL servers have administrator passwords."

4 of 290 comments (clear)

  1. geek sight %-) by Anonymous Coward · · Score: 1, Funny

    here is what i read

    "A new unmaned worm has been released"

    Cool, atleast M$ cares about its pilots .. waitaminute

  2. Good. by x136 · · Score: 2, Funny
    More specifically, this new worm targets Microsoft SQL servers with no administrator passwords set.

    Ooh, ooh! I know! We can call it the Dumbass Worm!
    Seriously though, If you don't set up an admin password on your server, you deserve to be hacked. Mercilessly.
    --
    SIGFEH
  3. Re:Microsoft always a target by nicething · · Score: 2, Funny
    >> Who says you need source to fix problems? In this case, it's as simple as setting a password for th sa user.

    Word up. The people this worm will affect are those who should know better. It's not like my gramma's running SQL Server, after all. (If she were, nobody would ever know the password. Some people's memory is quite the security device.)

  4. Its a conspiracy by Anonymous Coward · · Score: 1, Funny

    Yes, Slashdot must have had something to do with this password exploit in Linux. Try setting an easy to guess or no password, and it aborts complaining about a

    lame password, try again.

    Aughghgh! The lameness filter! So many root accounts. How will I ever remember them now?