Slashdot Mirror

← Back to Stories (view on slashdot.org)

New Windows Worm Inching Around Internet

Posted by ryuzaki0 on from the dance-the-samba dept.

helixcode123 writes "The Register is reporting a Windows Worm that takes advantage of weak default passwords. This looks pretty nasty, as it mucks with the registry and disables network sharing." Basically if it finds SMB shares with weak passwords, it drops an executable in the startup folder... for once a security problem that isn't really Microsoft's fault.

8 of 604 comments (clear)

  1. Re:Not Microsofts Fault? by Snoopy77 · · Score: 1, Redundant

    If you had read the article (jk) then you would know that the worm attacks those with simply passwords like [empty], xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx, admin, Admin, password, Password, 1, 12, 123, 1234, 12345, 123456, 1234567, 12345678, 123456789, 654321, 54321, 111, 000000, 00000000, 11111111, 88888888, pass, passwd, database, abcd, abc123, oracle, sybase, 123qwe, server, computer, Internet, super, 123asd, ihavenopass, godblessyou, enable, xp, 2002, 2003, 2600, 0, 110, 111111, 121212, 123123, 1234qwer, 123abc, 007, alpha, patrick, pat, administrator, root, sex, god, foobar, a, aaa, abc, test, test123, temp, temp123, win, pc, asdf, secret, qwer, yxcv, zxcv, home, xxx, owner, login, Login, pwd, pass, love, mypc, mypc123, admin123, pw123, mypass, mypass123, pw

    --
    "She's a West Texas girl, just like me" - G.W Bush Iraqis
  2. Good News by Ozric · · Score: 0, Redundant

    Hey this is great. It should take out all those morons that still have code-red banging on my webserver.

  3. Re:What were those commons passwords in Hackers? by RainbowSix · · Score: 0, Redundant

    Obligatory SpaceBalls Reference:

    DARK HELMET: So the combination is 1,2,3,4,5 ... That's the stupidest combination I've ever heard in my life! That's the kind of thing an idiot would have on his luggage.
    PRESIDENT SKROOB: .... 1,2,3,4,5. That's amazing I've got the same combination on my luggage.

    --
    --------
    It's OK to be social, just don't tell anyone about it.
  4. 12345? by bblough · · Score: 1, Redundant


    That sounds like a password some idiot would have on his luggage.

  5. This is a GOOD THING by TheZax · · Score: 0, Redundant

    It's NOT a WORM, it's a SELF INSTALLING PATCH

    It looks for vulnerable shares, and disables sharing on that PC, looks for others.

    Thank you very much, the Net is a safer place.

    And if MS wrote it, chances are it's legal (SP3 EULA).

    --

    JWall: GUI client for IPTables
  6. Re:This IS microsoft's fault by The+Bungi · · Score: 1, Redundant
    Now give me a valid reason why Microsoft can't require strong passwords by default?

    Why should they? To save themselves from stupid users and even stupider administrators? If you run a network and you don't have those rules in place, who's fault is it? Microsoft's?

    But Unix is 1337 because by default it forces you to use a complicated password. All hail Unix!

  7. Spaceballs Quote by eric2hill · · Score: 0, Redundant

    "1-2-3-4-5"

    "1-2-3-4-5!? That's the stupidest combination I ever heard in my life, thats the kind of combination and idiot would have on their luggage!"

    "1-2-3-4-5? That's the same combination that's on my luggage."

    --
    LOAD "SIG",8,1
    LOADING...
    READY.
    RUN
  8. Comment removed by account_deleted · · Score: 0, Redundant

    Comment removed based on user account deletion