Slashdot Mirror

← Back to Stories (view on slashdot.org)

MS05-039 Worm in the Wild

Posted by CmdrTaco on from the brace-for-impact dept.

An anonymous reader noted that SANS is reporting that the MS05-039 worm is in the wild. It has been named Zotob.A. Not a lot of information on this one yet except that it's trying to FTP files from a subnet.

9 of 252 comments (clear)

  1. What drives people to do this... by cameronk · · Score: 3, Insightful

    Every time some new worm is released onto the Internet, I ask myself what drives the sick people who create such things. What can we do to provide more disincentives to keep them from being jerks?

    --
    "...What is good for General Motors is good for America." -Charles Wilson, Secretary of Defense and fmr President of GM
    1. Re:What drives people to do this... by a_n_d_e_r_s · · Score: 3, Insightful

      Mostly money.

      Worms are used to get zombies, who are used to send spam, who are used to lure suckers to spend money on junk.

      --
      Just saying it like it are.
    2. Re:What drives people to do this... by Waffle+Iron · · Score: 3, Insightful
      I ask myself what drives the sick people who create such things. What can we do to provide more disincentives to keep them from being jerks?

      There are 6 billion people on this planet, and it only takes one of them to launch a worm. With a sample that large, there's no way that a worm won't get written if a vulnerability exists and generally known. There's always going to be at least one crazy who'll do it regardless of any disincentives. Peoples' energy is better directed at eliminating the vulnerabilities in the first place.

    3. Re:What drives people to do this... by lgw · · Score: 4, Insightful

      What scares me is it's only a matter of time and technology until we have this same situation with biological viruses.

      --
      Socialism: a lie told by totalitarians and believed by fools.
  2. miscategorised by hungrygrue · · Score: 3, Insightful

    Why is this under "worms" and "security" but not under "Windows" and "Microsoft".

    1. Re:miscategorised by suitepotato · · Score: 4, Insightful

      It is only horribly redundant because the average malware scumbag writer is taking the easy way out and going after Windows machines, taking advantage of end-user naivete and Windows' openness to infection. If they had any guts and were truly 1337, they'd try to get into a source repository on sourceforge and slip their own modded source in to get Linux people to infect their machines or something equally hard and nasty.

      Come to think of it, what do we know of the server security at any of the big name OSS-hosting sites and does anyone really peruse the source anymore? Given the difference between being C++ proficient and merely being able to administer a Linux system is like the difference between the average Windows user and a Windows programmer, I'm guessing not too many.

      --
      If my grammar and spelling are off, I am [distracted/tired/careless] (take your pick)
  3. Firewalls offer limited protection only by Dynamoo · · Score: 5, Insightful
    Remember folks - if you work for any large organisation, your external firewall will ONLY protect you as long as some freaking idiot doesn't bring an infected laptop in. From my experience a perimiter firewall will maybe buy you 1-2 days MAXIMUM in this situation if you have a large number of mobile users. In our case, we do not allow users to connect laptops to non-company networks at all.. but they still do.

    What's worse is that today is Sunday, so there's a greater chance of those laptops being used on an unprotected internet connection.

    Shucks, the patch for this is only four days old. There goes my Sunday afternoon!

    --
    Never email donotemail@WeAreSpammers.com
  4. Re:Must everything be handed to you? by Bald+Wookie · · Score: 3, Insightful

    Why should you have to do a Google search? The patch/exploit is the entire basis for the article. I know the quality of journalism at /. is mediocre at best, but expecting readers to search for the most relevant piece of information is asinine.

  5. An attack on Win2000? by nurb432 · · Score: 4, Insightful

    I bet microsoft secretly loves this, to get at all those people that wont upgrade to XP/2003.

    "See, you have to upgrade to be safe, send us money"

    --
    ---- Booth was a patriot ----