The security researchers at eEye Digital Security are not impressed with the Sasser worm
Published:
3 May 2004 y., Monday
The company, which found the flaws that were exploited by both the MSBlast worm and the Witty worm, on Saturday started analyzing the latest piece of attack code that takes advantage of a Microsoft Windows vulnerability discovered by its researchers. So far, eEye's analysts are surprised that the worm has spread so far.
The Sasser worm started spreading late Friday, and so far has not racked up the crowd of compromised computers that its predecessors have been able to claim. Such a limited spread could indicate that computer users are becoming more diligent about heeding warnings and patching their systems, but security researchers believe that the worm's poor programming has given network administrators a break.
"If this virus was better written, you would have seen more impact," said Alfred Huger, senior director of security firm Symantec's response center.
The Sasser worm spreads from infected computer to vulnerable computer with no user interaction required. The worm exploits a recent vulnerability in a component of Microsoft Windows known as the Local Security Authority Subsystem Service, or LSASS. After scanning for vulnerable Windows XP and Windows 2000 systems, the worm creates a remote connection to the system, installs a file transfer protocol (FTP) server and then downloads itself to the new host.
Šaltinis:
CNET News.com
Copying, publishing, announcing any information from the News.lt portal without written permission of News.lt editorial office is prohibited.
The most popular articles
Software company announced new structure_ of it_s business.
more »
A number of MEPs urged Internal Market Commissioner Michel Barnier to come up with common rules to regulate cross border online gambling in Europe.
more »
Think before you post as once you do it is online forever. That was the message on Safer Internet Day marked on 9 February by a seminar in the European Parliament.
more »
50% of European teenagers give out personal information on the web – according to an EU study – which can remain online forever and can be seen by anybody.
more »
When did the Commission start working on social networking sites?
more »
ICSA Labs, an independent division of Verizon Business, is the first independent security-product testing and certification laboratory to earn ISO/IEC 17025 accreditation, validating the laboratory's world-class capabilities.
more »
From today, European citizens, businesses and organisations can register .eu website names using characters from all 23 official languages of the European Union.
more »
Authorities investigated 301 mobile phone services websites in follow-up to EU crackdown on misleading consumer practices.
more »
After nearly 2 years of legislative work the Telecom Package is due to be put to a final vote in Parliament on 24 November in Strasbourg.
more »
The Christian Science Monitor reports that three men have been named as being the masterminds behind the hacking of RBS WorldPay, a subsidiary of the Royal Bank of Scotland.
more »
BAI’s Banking Strategies Insights reports that banks must get serious about improving their ATMs, especially in the area of envelope-free deposit.
more »