Zotob aftermath and analysis



The dust over the zotob worm infection has settled a bit at this point. (You can bet there are still infected machines out there though so if you haven’t patched yet – DO IT and check for signs of infection.) Among other things, The Security Fix is analyzing the impact.


Among other things Brian notes that this was more of a “Business Worm” and did not much affect home users. The point here is most home ISP’s are filtering the ports that many of these worms use to spread. The outbreaks instead were in business networks largely. This may be a sign of things to come. Many Small and medium sized businesses would have been more severely impacted with either no IT staff to deal with or very overworked IT trying to deal with the issues.

He summarizes several peoples analysis of the recent zotob outbreak. Including this timeline and analysis. It’s important to note the time from discloser of vulnerability to worm is getting shorter. This is in part because the exploit code gets freely shared. It should encourage network administrators (And Operating System vendors) to be more proactive and have a “default deny” mentality.

There’s also a note that the botnets are being used to distribute adware/spyware and act as spam relay networks. No surprises there.

Related Posts

Blog Traffic Exchange Related Posts
  • Network Security guide for the home or small business network - Part 8 - Don't be afraid to ask for help Deep breath time. We've covered a lot of good topics and it's important at this point to take a close look at what we've talked about and think. "Am I overwhelmed?" If so that's fine. Maybe you don't have enough time to think about all of this network security stuff.......
  • Zotob worm bites big media outlets According to several reports there are several big media outlets seeing what is reported as the zotob worm which exploits a Microsoft Windows vulnerability (MS05-039) disclosed last week. There seems to be no better way for something to make the news than for it to affect the companies that bring......
  • Zotob updates A couple of late afternoon updates at the handlers diary at incidents.org (sans institute). For starters, it looks like there may be a variation of zotob that has a mass mailer included. I didn't specifically see this in SARC's writeups of zotob.a or zotob.b, so, I'm wondering if this is......
Blog Traffic Exchange Related Websites
  • Network Marketing Blogs - Cheap Traffic - Will It Work For You Network Marketing Blogs -  I Just Did A Guest Post Image via Wikipedia One of the ways to get more content for your blog or to get more traffic to your  network marketing blogs is via guest posting.  A good friend of mine Peter Chapman just syndicated an article I......
  • 5 Golden Rules Of Online Business Networking Some rules you encounter are Golden, they're meant to be kept in mind forever rather than forgotten. These are positively helpful and necessary trail markers to guide us and permit us to remain on course. Golden Rules exist to guide you, to be followed, and to use. It makes very......
  • Internet Network Marketing Lies And More.. // Friends, Old School Network Marketing Is DEAD! The internet is filled with people who would lead you to believe that if you just get into --->Insert program here<---- You are going to make money.  You are told that if you just follow these simple directions you will start to......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site