Slashdot Mirror

← Back to Stories (view on slashdot.org)

More MyDoom Gloom

Posted by timothy on from the windows-users-are-mydoomed dept.

StarWreck points out this article in The Atlanta Journal Constitution citing "experts who believe the worm was put out for criminal profit motives by spammers and not by Linux Advocates." Further on that, deadmonk writes "MessageLabs is reporting that the recent Mydoom virus seems to have originated in Russia. A place where nobody gives a wet slap about a court case in the U.S. Personally, I'm looking for a serious apology (or at least a retraction) for the 'alleged' link between this ugly little nasty and Open Source / Linux users." Of course, there could be evil spammers who also like Linux (or don't like SCO), but until someone's caught, or fesses up, it's impossible to say. Read on for some more MyDoom updates, including a new variant (with a new payload), ramifications for Australians, and a forensic analysis of the worm.

fudgefactor7 writes "Hot on the heels of the last virus, Mydoom.b is on the loose. According to Computerworld, this variant has a larger payload and targets Microsoft's Web site for a distributed denial-of-service attack on Feb. 1, instead of The SCO Group Inc. Patch those systems and keep your A-V up to date. Definitions are available currently."

decaying writes "With the amount of virus-laden emails flying about due to the latest virus, Australian ISP Optus have started selectively blocking port 25 outbound. Optus say they are acting in accordance with their "Terms of use", quoting that they reserve the right to restrict access to any TCP/IP port. The only option is to use Optus' SMTP server and nothing else. Community site Whirlpool has an on-going discussion about the issue."

carnun writes "Just another link on MyDoom. Apparently the FBI are also getting in on the act. Interesting to see such a fast response." And to me, the most interesting one: Zeriel writes "After much discussion on a mailing list discussing trojan horses, some people have reached the conclusion that MyDoom doesn't accomplish its stated goal of DDOSing SCO at all! Choice quote from the analysis: "I have the new critter in a test environment where we conducted a preliminary and rudimentary functionality and threat analysis...I have played with the date, etc, but still no activity directed toward www.sco.com." The link also includes disassembly and analysis of the worm code."

7 of 730 comments (clear)

  1. Re:It's interesting by Anonymous Coward · · Score: -1, Offtopic

    ohtehnos! terrorists are stoled my megahurtz!!!!1111~~~one

  2. ObSoviet Russia Reference by Anonymous Coward · · Score: -1, Offtopic

    In Soviet Russia, MyDoom virus clogs YOU!

    1. Re:ObSoviet Russia Reference by Anonymous Coward · · Score: -1, Offtopic

      > In Soviet Russia, MyDoom virus clogs YOU!

      Whaaaat?? So everywhere else "you clog the MyDoom virus"? That doesn't make sense. YOU FAIL IT.

  3. Hey AL Frankin! by Anonymous Coward · · Score: -1, Offtopic

    Why don't you just tackle the guy and show him more of your intellectual wit.

  4. obviously Iraq did it by peter303 · · Score: -1, Offtopic

    George and Dick are still blaming most terrorism on Iraq. Still hoping that WMD will turn up too, even though both the UN and US army coulnt find much.

  5. Re:Off Track by coopaq · · Score: 0, Offtopic
    That idea has a big hole in it and it stinks!

    Such an open site shouldn't be denied service.

    Most of /. really don't want to stick it to bad to that site.

    Bah dum bum!

  6. Re:Off Track by Anonymous Coward · · Score: -1, Offtopic

    Oh come on moderators. Thats funny! ;)