Zotob aftermath and analysis



The dust over the zotob worm infection has settled a bit at this point. (You can bet there are still infected machines out there though so if you haven’t patched yet – DO IT and check for signs of infection.) Among other things, The Security Fix is analyzing the impact.


Among other things Brian notes that this was more of a “Business Worm” and did not much affect home users. The point here is most home ISP’s are filtering the ports that many of these worms use to spread. The outbreaks instead were in business networks largely. This may be a sign of things to come. Many Small and medium sized businesses would have been more severely impacted with either no IT staff to deal with or very overworked IT trying to deal with the issues.

He summarizes several peoples analysis of the recent zotob outbreak. Including this timeline and analysis. It’s important to note the time from discloser of vulnerability to worm is getting shorter. This is in part because the exploit code gets freely shared. It should encourage network administrators (And Operating System vendors) to be more proactive and have a “default deny” mentality.

There’s also a note that the botnets are being used to distribute adware/spyware and act as spam relay networks. No surprises there.

Related Posts

Blog Traffic Exchange Related Posts
  • Viruses and worms can come in from many directions For a long time, email was the primary vector for viruses, before that floppy discs carried bugs from pc to pc. Then came network worms exploiting windows security vulnerabilities which led to the rise of firewalls and the increase in viruses piggy-backing into the system through browser bugs. But, any......
  • Network Security guide for the home or small business network - Part 10 - use good passwords In a small, trusted network you might be able to get away with weak passwords for file sharing for instance. What's a weak password? Anything you might find in a dictionary. Most people don't realize this, but there are programs designed to crack passwords. They're designed to take a dictionary......
  • Zotob updates A couple of late afternoon updates at the handlers diary at incidents.org (sans institute). For starters, it looks like there may be a variation of zotob that has a mass mailer included. I didn't specifically see this in SARC's writeups of zotob.a or zotob.b, so, I'm wondering if this is......
Blog Traffic Exchange Related Websites
  • Guarantee Internet Marketing Growth - Business Networking that Accomplishes Your Goals Knowing the right people is how most business owners and managers build their businesses and take them up to higher levels. That's right; long term success depends on who you know and that's the reason it is so important to work on the right kind of business network and have......
  • Advertising on Facebook If you are not already making use of Facebook as a method of marketing your business or niche, then you are absolutely missing out on a great opportunity to reach out to hundreds of millions of active users. Today, Facebook has become one of the most popular online social networking......
  • How to Install a Home Security System: Most Common Pitfalls Installing a home security system might seem easy. To be sure, it’s a lot easier to install one today than it was just a decade ago. Inexpensive consumer electronics components combined with robust wireless technology means that even an amateur can put in a decent system. Just because it’s easy,......
www.pdf24.org    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Comments are closed.


Switch to our mobile site