Slashdot Mirror

← Back to Stories (view on slashdot.org)

Feds Working to Stop Worms

Posted by ryuzaki0 on from the information-superhighway-patrol dept.

mbenzi writes "This article from GovExec describes how the feds worked to prevent a worm that could have been orders of magnitude worse than Code Red. Short on details, but an interesting timeline."

16 of 248 comments (clear)

  1. I saw this and thought of dune/star wars by AssFace · · Score: 4, Funny

    I'm glad I can now walk through the desert without the sand worms attacking.

    thanks government!

    --

    There are some odd things afoot now, in the Villa Straylight.
    1. Re:I saw this and thought of dune/star wars by Lord_Slepnir · · Score: 4, Funny
      I'm glad I can now walk through the desert without the sand worms attacking

      With the upcoming Desert War II, President Bush wants to make sure that the Iraqis riding on sandworms won't be able to get behind our lines and cause horrofic dammage like they did before.

      There are also unconfirmed reports of a new spiritual leader who has been supplying them with rocket launchers and teaching them how to ambush the spi--, er, oil smugglers. Let's just hope there isn't a sand storm when Bush visits....

  2. Who the heck wrote this? by Gentoo+Fan · · Score: 5, Interesting

    With a gang of zombies at his command, the creator of a superworm could mob a Web site or computer system, flooding it with bogus electronic transmissions until it drowned in the data torrent.

    Tens of thousands of computers containing now-dormant Leaves worms await instructions from their master. Should they ever again awaken, a posse will be waiting.

    With writing like this it sounds like someone trying to scare up funds to keep this department up and running.

    1. Re:Who the heck wrote this? by Entrope · · Score: 4, Insightful

      You think it is a laugh. People who spend 10 or 20 hours a week (of their spare time, more often than not) tracking down these viruses and the criminals behind them probably disagree.

      One of the largest IRC networks was recently humbled by attacks from worm-infected computers. Every other large IRC network deals with several new infections each week. It is only because the script kiddies (mostly) restrain their attacks to IRC, and because IRC admins go to great lengths to fight the worms, that more damage is not done by infected computers.

      IRC networks are particularly easy targets, since each server is usually run by separate person or company, and the FBI is not interested in investigating cases unless $5,000 of damages can be claimed by one group -- never mind if there are one or two thousand infected computers that could be wiped out by a malicious kiddie. If the criminals get better at hiding their tracks or their commands, they may become more brazen and attack bigger targets.

      Personally, I am glad that somebody in law enforcement is taking active steps to investigate and shut down these worms. They can actually punish the criminals behind the attacks. Private parties can, at most, disperse the botnet or terminate the attacker's account.

    2. Re:Who the heck wrote this? by tg_schlacht · · Score: 4, Funny

      With a gang of zombies at his command, the creator of a superworm could mob a Web site or computer system, flooding it with bogus electronic transmissions until it drowned in the data torrent.

      A smart worm could just post a link to the website it wants to bring down to Slashdot in an article made of carefuly crafted phrases built of buzzwords.

      So who needs a gang of zombies? Oh, wait.... nevermind.

  3. AUGHH! buzzword compliant! by Maeryk · · Score: 4, Insightful

    "some of the most brilliant hackers in the world"?

    SInce when are Skript Kiddeez brilliant hackers?

    This article is stupefyingly filled with crap.. the whole alliterative narrative to make a "worm" into something more than a program is scary. "Clones" rather than "copies" "larva" rather than "small". "zombies" "Slither" "poisonous venom".

    Ye ghods.. is this a tech article, or color text for a M:TG card?

    maeryk

    --
    Feminine Protection? What is that? A chartreuse flame thrower?
  4. Is this the first draft of the new ... by CSG_SurferDude · · Score: 4, Funny

    Is this the first draft of the new Michael Crichton novel?

    I found the plot rather thin, the characters unbelievably one-dimensional, and the ending was far to pat and convenient to believe.

    Actually, it reads like most of his novels.

    --

    LongTail SSH Brute Force analysis tool is here!

  5. Feds Working To Stop Worms by SuperDuG · · Score: 4, Interesting
    Sandworms, they're the worst kind

    In all seriousness I don't understand how they can tell if a worm was "more serious" than code red. The best thing about most worms is that most of them are "so wonderful" that they leave out a few details and never make it anywhere but the authors test system.

    It's not worms I'm afraid of, it's next gen virii. With problem solving and logic bots that use AI it's just a matter of time before you train a program to do malicious things and give it multiple ways of accomplishing one goal of infection with a prime directive of selfpreservation, that would be the 'ultimate' worm.

    We've all seen the AI programs ability to play chess, and that is impressive all in itself, can you imagine the same type of system loaded with every exploit ever documented, and then the ability to gain access via that list? Or imagine if somehow the program were able to recieve the notices of bugs (Cert, bugtraq, errata, and MS) and then learn of new potentially unpatched systems.

    The problem would be not implementing the worm, nor stopping, but finding a reason for it's existence. Would it be used as a proof-of-concept only to be more horribly enacted in version 2? Would it be used for a massive DDoS attack on key internet systems thus disabling the net for a small amount of time? Or would the system dump all valueable information on a centralized server and then essentially commit suicide?

    The only problem is how could this bug be 'harmful' to a host system if the prime directive was self perseverance? It's a little bit too deep of thinking for a friday morning, but we have yet to see what virii are actually capable of.

    --
    Ignore the "p2p is theft" trolls, they're just uninformed
  6. This is Microsoft's Job by jblaze · · Score: 5, Insightful

    Why are we paying to have the government fix Microsoft's bugs?

  7. Already something worse than Code Red... by LordYUK · · Score: 4, Funny

    they call it Pepsi Blue.

    --
    This is my sig. Its pathetic.
  8. "Mmmmm Propaganda Articles" - H. Simpson by Dolemite_the_Wiz · · Score: 5, Insightful

    Is is me or does this article read like the cross between a propaganda article, a typical narrative from a Batman TV episode ("Will our heros be able to complete the task? Stay Tuned Bat-Fans!!!"), and a recruitment Ad for the FBI, CIA, or any of the Armed forces?

    Dolemite

    --
    Save the World! Use a Quote!
  9. Fiction writing contest? by TheConfusedOne · · Score: 4, Insightful

    Ye gads that was horrible. This has to be my favorite bit of hyperbole:
    Worms were the most vicious new beasts to stalk the Internet.

    I think Morris would have a few words of disagreement about that.

    So, we have a section: Early July.

    Then the next section: Second Week of July which starts
    Weeks passed.

    And, to top it all off we go over to McAfee and search and get the following:
    Search Results
    We found no records matching the following criteria:
    Virus name containing "leaves".

    This has to be BS of the first and worst order.

    --
    --- I wish I could hear the soundtrack to my life. That way I'd know when to duck.
  10. Jeeze... by pubjames · · Score: 4, Interesting

    So the best government executives in the USA act like secret agents in cheap pulp detective novels?

    Perhaps they should try:

    a) alterting businesses and organisations that have vulnerable systems.
    c) naming and shaming software manufacturers with poor security processes.

    But I guess fighting faceless villans with wicked plots to destroy the world is a lot more fun.

    It's not quite as exciting when you realise that most of the villans are actually just naughty children.

  11. It is good to know by teamhasnoi · · Score: 4, Funny

    that the old X-files writers are getting some work.

  12. Better than this article... by Yekrats · · Score: 4, Informative

    I found Steve Gibson's description of battling a DDoS attack having more technical information, and being much more entertaining at the same time. He's the author of "Shields UP!!" and other Internet security software. A good read for geeks.

    --
    Ceci n'est pas une pipe.
  13. Worse than Code Red? Doesn't seem so... by S.Lemmon · · Score: 4, Interesting

    Wow, this article's one juicy bunch of overwrought scare-mongering! It makes "Mr. Leaves" out to be some sort of James Bond super-villain, and then goes on to say "leaves" still took a back-seat to Code Red.

    Once you peel back all the hyperbolistic prose, "leaves" seems to be just another run-of-the-IRC zombie that exploits PC already infected with Sub7. Numbers from the article itself show that it had nowhere near the infection rate or virulence of Code Red. The strange bit is at the end they imply, once the guy was caught, they just left the zombies out there rather than alert the owners of the infected PCs!? Odd that, wonder what the gov wants with all those waiting worms...