Zotob aftermath and analysis



The dust over the zotob worm infection has settled a bit at this point. (You can bet there are still infected machines out there though so if you haven’t patched yet – DO IT and check for signs of infection.) Among other things, The Security Fix is analyzing the impact.


Among other things Brian notes that this was more of a “Business Worm” and did not much affect home users. The point here is most home ISP’s are filtering the ports that many of these worms use to spread. The outbreaks instead were in business networks largely. This may be a sign of things to come. Many Small and medium sized businesses would have been more severely impacted with either no IT staff to deal with or very overworked IT trying to deal with the issues.

He summarizes several peoples analysis of the recent zotob outbreak. Including this timeline and analysis. It’s important to note the time from discloser of vulnerability to worm is getting shorter. This is in part because the exploit code gets freely shared. It should encourage network administrators (And Operating System vendors) to be more proactive and have a “default deny” mentality.

There’s also a note that the botnets are being used to distribute adware/spyware and act as spam relay networks. No surprises there.

Related Posts

Blog Traffic Exchange Related Posts
  • Network Security guide for the home or small business network - Part 8 - Don't be afraid to ask for help Deep breath time. We've covered a lot of good topics and it's important at this point to take a close look at what we've talked about and think. "Am I overwhelmed?" If so that's fine. Maybe you don't have enough time to think about all of this network security stuff.......
  • Network Security guide for the home or small business network - Part 11 - Why? Alright, so you're still reading this series and you're thinking. Look, I'm not protecting national security secrets. All I'm doing is (running a business|emailing my grandkids|using the web for research). True, good point. You're not at the defense department. OK. Let's say you just use your computer for email and......
  • Zotob updates A couple of late afternoon updates at the handlers diary at incidents.org (sans institute). For starters, it looks like there may be a variation of zotob that has a mass mailer included. I didn't specifically see this in SARC's writeups of zotob.a or zotob.b, so, I'm wondering if this is......
Blog Traffic Exchange Related Websites
  • Swom Social Network: Hype OR The Real Deal? I joined the Swom Social Network a few months ago. Up until a few days ago I didn't really pay it much attention. I seen the typical noise around it. I figured it was another hyped up scheme to get people all excited but at the end of the tunnel......
  • Important Information About Security and Surveillance Systems If you notice yourself at the time where you need to locate an unfailing and efficient security and surveillance system for your residence or business then you should be prepared to feel weighed down. The diverse technologies, quantity of brands available on the market, furthermore the mystifying selection of aspects......
  • Guarantee Internet Marketing Growth - Business Networking that Accomplishes Your Goals Knowing the right people is how most business owners and managers build their businesses and take them up to higher levels. That's right; long term success depends on who you know and that's the reason it is so important to work on the right kind of business network and have......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site