Schneier on Attack Trends: More Complex Worms

Gary W. Longsine writes "Bruce Schneier has posted an interesting entry on expected attack trends to his blog. Of particular interest is the increasing sophistication of automated worm-based attacks. He cites the developing W32.spybot.KEG worm -- once inside a network it scans for several vulnerabilities and reports its findings via IRC. Trend Micro also has information on a scanning-capable version of this worm, which they call: WORM_SPYBOT.ID"

Yet another.

[The+Cisco+Kid]

This article, and all articles on the same topic, can all be summarized by 'You rtypical consumer Windows system is utter swiss cheese, and is and will become more utterly vulnerable to variius exploitative 'software' which will take over the machine and use it for any number of nefarious purposes. If you are stupid enough to still think you *have* to be using Windows, at least have the sense to ensure that no Windows machine is ever connected directly to the Internet (only thru a *seperate* physical firewall/router *device* which performs NAT and does not permit connections initiated inbound from the Internet to even reach the Windows machine's NIC - software firewalls arent, dont, and cant), and that you immediately deinstall/deactivate MSIE and MSOE, and substitute less swiss-cheesy applications if you need the corresponding function. If you persist in using Windows on a directly connected Internet machine, then anyone who isnt a complete moron will label you as one'..

There. No further articles concerning Windows trojans/viruses/exploits are required. If attention is called to some new "news" regarding this, just refer to this summary.