New Microsoft Worm Coming Soon?

Seft sent in a solid article running on the BBC discussing the next potential worm explosion on the heels of a recent Security Bulletin from Microsoft. The article is a somewhat general topic piece on worms in general.

In other news...

[brotherscrim]

...Scientists predict the sun will rise tomorrow.

Re:In other news...

[ramzak2k]

"...Scientists predict the sun will rise tomorrow."

I live in the east cost, insensitive clod !

Re:In other news...

I live in the east cost, insensitive clod !

Apparently the hurricane situation is much worse then I had imagined, if your living in the east coast.

Worm's Target

on the heals of a recent Security Bulletin from Microsoft

Apparently, the worm infects the user's grammar-checker, rendering it inoperable.

Re:Worm's Target

[RobertB-DC]

I tried it in M$ Word, and here's what Clippy told me:

. . . explosion on the heals of a recent Security Bulletin...
Clippy: Order of Words (consider revising)

Applying typical Slashdot editorial standards, I tried this:

. . . explosion on heals the of a recent Security Bulletin...
Clippy: Order of Words (consider revising)

Crap, let's try again.

. . . explosion on heals of the a recent Security Bulletin...
Clippy: Remove "the" or "a"

I think we got it:

Seft sent in a solid article running on the BBC discussing the next potential worm explosion on heals of the recent Security Bulletin from Microsoft. The article is a somewhat general topic piece on worms in general.
Clippy: turns into a bicycle and rides into the distance

Alright! Let's post!

Re:Worm's Target

[morcheeba]

Apparently Microsoft security bulletins are a faith-healer type religious experience... almost like an exorcism where the sysadmin slaps the computer on the forehead and says "demons be gone".

Thank goodness...

[dillon_rinker]

...that the next worm explosion heals the recent Microsoft Security Bulletin. That will be a welcome change, coming on the heels of the last big Microsoft worm.

1993?

[StingRayGun]

"Malicious hackers are starting to circulate computer code that exploits recently found vulnerabilities"

Starting? When was this article written 1993?

New Microsoft Worm Coming Soon!

[mogh1701]

Gee thats like say new windows security patch coming soon

New Worm 9.0!

All my friends and family use Worm 9.0! It's easier than ever!

*Sigh*

[r_glen]

Its a shame the only people who read these articles are the ones who aren't affected in the first place.

New slashdot pattern: 3 articles per MS Virus/Bug?

[alexmogil]

So now there will be:

A pre-worm article

A current worm article

And a post-worm article?

Essentially three times the FUD, bashing, turfing, and... well, slashdot.

And in other news...

[fataugie]

The Sun is scheduled to rise in the east tomorrow morning...

What patch?

[nlangille]

Either MS is stupid and hasn't put up the patch for win2k pro yet, or I got this ages ago.

Re:OT: Unofficial Hostility in "Cyber Space"

[FileNotFound]

Good to know.

I'm sure GWBush is despreatly looking for an "evil nation" that can "bring it on".

But then I find US and China having any kind of hostility highly unlikely.

China exports so much to the US that they'd fall over backwards and cry if the US put on a trade embargo. No shots need to be fired.

Products NOT affected...

[immel]

"Windows 98, Windows 98 Second Edition (SE), and Windows 95 also are not affected by this issue." So we can save ourselves by downgrading to previous windows versions? Or is this just a shameless plug? "However, these products are no longer supported. Users of these products are strongly encouraged to upgrade to later versions." Yup. It's a plug for newer, even more vunerable software, alright.

Happy worms

[GillBates0]

MSBlast many worms, which travel round the net by themselves, were happy simply to swamp net connections with traffic as they searched for new servers and computers to infect.

Tra la la ...we're goin' 'round the good ole 'net.
hey guys looky there, a new network let's swamp it, I say
*swamp swamp swamp*
ha ha ha ha ha ho ho ho ho ho hee he he he what fun!

*happy singing*
here we go around the good ole net
good ole net
good old net

hi fellas, guess what I found! A nice clean M$ server
Yaaaay!!!
Here we go *infect infect infect*
Haa ha ha ha ho ho ho ho hee hee hee hee What fun!

New Worm

[seangw]

There's a new worm out there that exploits a security hole still in Windows 2k/XP from when it was released.

It has the capability to shut down applications, goes right through anti-virus software (even the latest patches!!!), and gives total control of the victim computer to the creator of the worm.

An attempt by the powers that be to shut down it's source of updates was thwarted by various government agencies and the worm itself.

Unfortunately there is no patch to get rid of the W32.MS.AutoUpdateRequired worm.

Re:The Amazing Flying Hackers of China!

Hackers in China... hey, it looks like China is the new Russia!

In Soviet Russia, Russia is the new China!

Haha!

I was just on my way to microsoft.com to get the patch, when I realized I was running Debian. :D

Re:Wish i had mod points

Well then I'm going to meta-meta-meta mod you! Ha! How do you like that!?

Re:Am I inffected?

since you read slashdot, no, that worm probably hasn't been used enough to be infected by anything.

Somewhat

[JordanH]

• The article is a somewhat general topic piece on worms in general.

Since General Wesley Clark has entered the general Democratic field for the next general election, it's been generally assumed that general technical issues like this one would be handled with somewhat general ease by applying the general security practices to used by the general public, in general.

Re:Where's the update?

[Bourbonium]

I believe this all refers to MS03-039, released on 9/10/2003. If you've updated your system since last Wednesday, you're protected and the patch won't show up as a Critical Update, because you've been scanned and MS has determined that you're already patched.

Of course, if you're using Linux and you go to the Windows Update site, you won't find any critical updates for your system there either.

benign worms against the RIAA

[eepness]

I'm surprised we haven't seen worms doing more interesting tasks than coordinated DDOS attacks... Think what would happen if a worm spread some sort of simple P2P client to every machine it hit, and just initiated random downloads of mp3's from other worm-infested nodes (and maybe users could make a "suggested downloads list" through a config file somewhere). The RIAA would get dizzy trying to find a target to sue...

look at the photo

[lithis]

i'm sure all the macintosh users were as frusterated as her.

Re:Welcome

[wo1verin3]

>> I, for one, welcome our new worm Overlords.

With that attitude, the movie Dune would have been a lot more boring. :(

Re:The Amazing Flying Hackers of China!

[Marcus+Brody]

True. It would have to run for x hours, trying to infect other hosts before "delivering its payload".
What would be a good value for x?

X would clearly be PC dependent for optimum worm spread. An obvious thing would be to deliver the fatal payload after the infection had spread to, say, 15 other PC's. This would cause exponential spread until the number of vulnerable machines became limiting.

But thats *boring*. A much more twisted & evil thing to do would be to deliver a payload at a mission-critical point. For example, after MS Word had been used excessively over a few days, and the word CONCLUSION was typed in.

/maniacal evil genius laugh/

Re:The Amazing Flying Hackers of China!

[RobertB-DC]

Go further down the rabbit hole. Ask yourself if China is this bad AND has nuclear weapons why was Iraq invaded while China's a preferred trading status country?

I just happen to have a TRS-80 Level II Basic program in front of me:

10 Data "China", "yes", "yes", "Iraq", "yes", "no"
20 Read Country$, Bad$, Nuke$
30 If Bad$ = "yes" then Print "We must deal with "; Country$
40 If Bad$ = "yes" and Nuke$ = "no" then Print "Invade Evil "; Country$; "!!!"
50 If Bad$ = "yes" and Nuke$ = "yes" then Print "We will constructively engage "; Country$; " with trade."
60 GOTO 20

Re:Mod the college student down...

[FyRE666]

However if you work in an environment with mission critical apps that cannot fail, you can't just simply "patch your systems".

I have to ask, why the hell would you be running anything remotely "mission critical" on windows in the first place???

from microsoft.com

[name773]

The protocol itself is derived from the Open Software Foundation (OSF) RPC protocol, but with the addition of some Microsoft specific extensions. i.e. vulnerabilities

Microsoft's Advice

[digime]

From Microsoft:

Note Windows 98, Windows 98 Second Edition (SE), and Windows 95 also are not affected by this issue. However, these products are no longer supported. Users of these products are strongly encouraged to upgrade to later versions.

WTF? How this translates to me - "If your computer is immune from these new strains of virii you are strongly encouraged to make it vulnerable."

Re:Microsoft's Advice

[frkiii]

Marketoid advice:

"How can we spin this to get people to upgrade to XP and other OSes?"

Of course they would encourage users to upgrade to later versions of their own OSes!

Can't have all these people out there with >= Windows 98 SE, when we have "big" plans for them (i.e. remote disabling of applications, deleting of files, etc.).

Regards,

Fredrick

Re:Am i the only one?

[NanoGator]

"Am I the only one who noticed that the woman in the BBC Article's picture (directly above the "The MSBlast worm hit some users hard" Caption text) is using an old mac,"

The virus turns your PC into a Mac?! Now that's a creative way to hit users hard.

Microsoft Worm

[Sloppy]

Typical. Pre-announcing vaporware just to hurt competitors' sales.

Re:The Amazing Flying Hackers of China!

[austad]

In communist China, the viruses write you!

Re:The Amazing Flying Hackers of China!

out of data error...

Re:The Amazing Flying Hackers of China!

[paj1234]

> Even if you do learn to speak correct English, whom are you going to speak it to? -- Clarence Darrow

Friend, you mean, "Even if you do learn to speak correct English, to whom are you going to speak it? -- Clarence Darrow"

Re:OT: Unofficial Hostility in "Cyber Space"

[dwillden]

China exports so much to the US that they'd fall over backwards and cry if the US put on a trade embargo. No shots need to be fired.

Amen to that, Try to find a US Flag that doesn't say Made in China. Particularly the small novelty sized ones.

Bear found sh*ting in woods

New MS worm coming soon?

Read tomorrow's /. for our exclusive discovery that the sun rises in the morning, and diappearing in the evening.

Sell it!

[KC7GR]

AP WIRE(less), 18-Sep-03. Microsoft Corporation president Steve 'Balmy' Ballmer announced today the formation of a new subdivision of the company which will specialize in the production and marketing of exploits for the Windows operating system.

"All we're doing is catering to existing demand" Ballmer said during a press conference. "People want this stuff as much as they want Windows, and we're the best choice to make the exploits available. After all, we know better than anyone how many bugs are in our own code..."

The first official release of the Windows Exploit Advantage Kit, or WEAK, is scheduled to take place on December 42nd. When questioned about the date, Mr. Ballmer had this to say; "It's our way of honoring the late Douglas Adams. Even if that weren't enough, it turns out that the number of bugs in Windows, divided by half the number of years before our sun goes nova, equals exactly 42. What could be more appropriate for a release date...?"