Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Major new worm poses serious threat worldwide (Attack?)
Infoworld ^ | See Link

Posted on 09/18/2001 2:49:25 PM PDT by -No Way-

Major new worm poses serious threat worldwide....

Heads up!!!!


TOPICS: Miscellaneous; Your Opinion/Questions
KEYWORDS:
Navigation: use the links below to view more comments.
first 1-2021-24 next last

1 posted on 09/18/2001 2:49:25 PM PDT by -No Way-
[ Post Reply | Private Reply | View Replies]

To: -No Way-

My dear brother and sister FReepers,

At this, of all times in my lifetime, I would like nothing more than to be able to read these threads and reply to them.  I have much I would like to say.

BUT, I cannot!

Why?

Because I am trying hard to raise the finances needed to keep FreeRepublic up and running so that we can continue to share valuable information and respond to it.

I beg you, if you have not yet donated to FreeRepublic this quarter,  do so now!

I realize you are giving to lots of Relief efforts and I encourage you to do so.  But we need to help FR too.  Where would we be right now without it?

If you have no money, please come and bump the Fundraiser Thread.

I would really like to reach our goal quickly so that I and the rest of the dedicated FReepers who are working the Fundraiser Threads can participate in what is undeniably the most important time in FreeRepublic's history.

WHERE WOULD YOU GET YOUR NEWS FROM IF FREEREPUBLIC WASN'T HERE?  <--click here

Support FreeRepublic! Support the U.S.A. <--click here

2 posted on 09/18/2001 3:02:04 PM PDT by 2ndMostConservativeBrdMember
[ Post Reply | Private Reply | To 1 | View Replies]

To: -No Way-
Thanks. We have kids that get e-mails with attachments all the time! Thank you!
3 posted on 09/18/2001 3:02:33 PM PDT by concerned about politics
[ Post Reply | Private Reply | To 1 | View Replies]

To: -No Way-
Only if you are dumb enought to run Microsoft products. Of course us Mac OS 9/X and UNIX uses have nothing to fear from this distraction.
4 posted on 09/18/2001 3:05:32 PM PDT by toupsie
[ Post Reply | Private Reply | To 1 | View Replies]

To: -No Way-
Nice they let us know. By the way I hear those Civil Defense warnings they put on the Radio and TV ya know Beep, beep, beep, and those horrible noises. Well they have suspended them because they are scaring people. Go figure.
5 posted on 09/18/2001 3:06:20 PM PDT by eternity
[ Post Reply | Private Reply | To 1 | View Replies]

To: 2ndMostConservativeBrdMember
DONE!
6 posted on 09/18/2001 3:25:44 PM PDT by -No Way-
[ Post Reply | Private Reply | To 2 | View Replies]

To: -No Way-
Major new worm poses serious threat worldwide

By Sam Costello September 18, 2001 10:40 am PT

A NEW WORM that can infect all 32-bit Windows computers and propagates using multiple methods has spread across the world Tuesday morning, according to Roger Thompson, technical director of malicious code at TruSecure.

The worm, called Nimda (admin spelled backwards), can spread via e-mail attachments, HTTP, or across shared hard disks inside networks, Thompson said. The worm can infect all 32-bit Windows systems -- Windows 98, 2000, Millennium Edition, XP, NT -- because it scans systems for between 10 and 100 different vulnerabilities and exploits them when found, he said.

"It looks like they've made a Swiss Army Knife," Thompson said, referring to the number of different tools the worm can use to attack systems.

"Every Win32 system is going to be vulnerable, if not from one [vulnerability], then from another," he said.

When spread by e-mail, Nimda arrives in inboxes as an attachment called "Readme.exe" or sometimes Readme.eml, Thompson said. The Readme file, however, has a malformed header (the data at the beginning of a file that allows a system to identify its type) which makes the computer think it is a WAV, or sound, file, he said. However, Readme.exe is in fact a program and can be executed just from the preview panel when viewing it without it being opened, he said.

Once the worm has infected a system, be it by HTTP, e-mail, or disk sharing, it then scans its local subnet (a chuck of the Internet) looking for vulnerable systems, Thompson said. Although some systems, such as those that are up to date on their patches, are protected behind firewalls or those that are filtering .exe attachments, will be safe from some aspects of the worm, that it spreads via three methods makes it more difficult to stop, he said. The spread of the worm across shared disks, which are more than likely entirely unprotected, "is going to be a real pain," he said.

The worm was discovered by Thompson's worldwide network of "worm catcher" systems at 9:08 a.m. ET Tuesday, he said. Within half an hour, it had spread across the whole world, he said.

"[Nimda] is certainly much faster, much more aggressive, and much bigger" than Code Red, Thompson said. Code Red was another recent worm that caused a good deal of damage and consternation for systems administrators worldwide.

Although Code Red did not ultimately have an impact on Internet performance despite some initial claims to the contrary, "we may actually see a hit on the Internet [and its performance]" with Nimda, Thompson said.

Computer security bodies the Computer Emergency Response Team/Coordination Center (CERT/CC) and Incidents.org both issued alerts about increased activity on the Internet Tuesday, stating that the activity may be related to the worm.

The spread of Nimda comes after warnings from a number of groups saying that attacks on networks and Web sites were possibilities after last Tuesday's terrorist attacks against New York and the Pentagon, outside of Washington. Although Thompson declined to comment on a possible connection between this worm and those attacks, saying it was inappropriate, the advisory released by TruSecure said, "we cannot discount the coincidence of the date and time of release, exactly one week to [probably to the minute] as the World Trade Center attack."

Sam Costello is a Boston-based correspondent for the IDG News Service, an InfoWorld affiliate.

Commander Anti-virus has a fix.

7 posted on 09/18/2001 3:26:04 PM PDT by afraidfortherepublic
[ Post Reply | Private Reply | To 1 | View Replies]

To: -No Way-, tech_index
Filing article at tech_index
8 posted on 09/18/2001 3:27:04 PM PDT by afraidfortherepublic
[ Post Reply | Private Reply | To 1 | View Replies]

To: -No Way-
 
FR Link Below:
 
The "Nimda" virus ("Admin" spelled backwards) -How to Protect...
 
 

9 posted on 09/18/2001 3:30:21 PM PDT by DeBug=int13
[ Post Reply | Private Reply | To 1 | View Replies]

To: toupsie
Only if you are dumb enought to run Microsoft products. Of course us Mac OS 9/X and UNIX uses have nothing to fear from this distraction.


[sarcasm] Wow, I had no idea that Mac OS 9/X and UNIX were able to stop ALL virus attacks. Hmmm...I thought I just read about some similiar issues on linux, but I must be wrong, afterall, you said UNIX systems are safe (implying they don't get virus attacks at all) [/sarcasm] Do you realize you just called 90% of the worlds computer users dumb?

10 posted on 09/18/2001 3:39:26 PM PDT by for-q-clinton
[ Post Reply | Private Reply | To 4 | View Replies]

To: toupsie
Mac OS 9/X and UNIX can be attacked. They aren't attacked as much and don't receive all the press because they aren't the dominate OS's.

If the market positions were reversed, the Mac OS and UNIX would show their vulnerabilities more than they do.

As it is, Crackers concentrate on what they know and are familiar with. Even still, there are Cracker sites which deal with taking down UNIX boxes.

11 posted on 09/18/2001 3:42:05 PM PDT by Psycho_Bunny
[ Post Reply | Private Reply | To 4 | View Replies]

To: eternity
I wondered where those TV and radio warning noises went ... we used to get them here weekly.

So the government helps us by warning us, then by scaring us, then by not warning us. Great logic, huh? Typical.

12 posted on 09/18/2001 3:42:19 PM PDT by Terrorista Nada
[ Post Reply | Private Reply | To 5 | View Replies]

To: toupsie
Clearly you don't understand that EVERY operating system
has limitations and vulnerabilities.

I happen to own Linux, various Windows, and at one time Mac computers.
They all have issues.

So step off your pedestal.

13 posted on 09/18/2001 3:45:11 PM PDT by triggerhappy
[ Post Reply | Private Reply | To 4 | View Replies]

To: -No Way-
Thank you VERY much!
14 posted on 09/18/2001 3:48:20 PM PDT by 2ndMostConservativeBrdMember
[ Post Reply | Private Reply | To 6 | View Replies]

To: for-q-clinton
[sarcasm] Wow, I had no idea that Mac OS 9/X and UNIX were able to stop ALL virus attacks.

At least for Linux, there simply aren't viruses. There are worms, which are different, but there aren't viruses in the sense that someone can send you an email and crater your entire machine.

Hmmm...I thought I just read about some similiar issues on linux, but I must be wrong, afterall, you said UNIX systems are safe (implying they don't get virus attacks at all) [/sarcasm]

Generally, they really don't even blip as targets of virus attacks, mainly because such attacks are almost entirely unsuccessful. It is true, however, that Linux and similar systems give users enough rope with which to hang themselves, but it requires a knowledgable user to misconfigure their system. Whereas M$ products come misconfigured and ready to infect the world out of the box.

Do you realize you just called 90% of the worlds computer users dumb?

Hey, if the shoe fits... ;-)

15 posted on 09/18/2001 3:51:09 PM PDT by pcgTheDestroyer
[ Post Reply | Private Reply | To 10 | View Replies]

To: Psycho_Bunny
Mac OS 9/X and UNIX can be attacked. They aren't attacked as much and don't receive all the press because they aren't the dominate OS's.

If the market positions were reversed, the Mac OS and UNIX would show their vulnerabilities more than they do.

As it is, Crackers concentrate on what they know and are familiar with. Even still, there are Cracker sites which deal with taking down UNIX boxes.

Cracking != viruses. As for concentrating on ``what they know'', I'd wager more crackers have access to an OS that costs $0 (Linux) than they do one that costs as much as a couple of thousand dollars (M$ family of products).

16 posted on 09/18/2001 3:56:13 PM PDT by pcgTheDestroyer
[ Post Reply | Private Reply | To 11 | View Replies]

To: toupsie
I guess I'm one of those "dumb enough" to like software that is widely available.
17 posted on 09/18/2001 4:02:20 PM PDT by TommyDale
[ Post Reply | Private Reply | To 4 | View Replies]

Comment #18 Removed by Moderator

To: 2ndMostConservativeBrdMember
You are beginning to sound like Pat Robertson of the 700 club. Too much begging can be counter productive.
19 posted on 09/18/2001 4:21:58 PM PDT by rstevens
[ Post Reply | Private Reply | To 2 | View Replies]

To: -No Way-
It's not that bad.
But you don't have to eat the worm, ya know...
20 posted on 09/18/2001 8:25:36 PM PDT by DAnconia55
[ Post Reply | Private Reply | To 1 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-24 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson