return to tranceaddict TranceAddict Forums Archive > Main Forums > Chill Out Room

Pages: [1] 2 
msblast.exe the worm
View this Thread in Original format
blazed it
i must say this is an ingenious worm the only one that has ever compromised my system. What a brilliant design to disguise it was to use the flaw in the file sharing port protocols. what do you guys think of this worm? besides not liking it?


i was infected :nervous:
jonsimmonds
quote:
Originally posted by blazed it
i must say this is an ingenious worm the only one that has ever compromised my system. What a brilliant design to disguise it was to use the flaw in the file sharing port protocols. what do you guys think of this worm? besides not liking it?


i was infected :nervous:


firstly it shows how many people ignore the automatic updates within windows or not bother to visit http://windowsupdate.microsoft.com , thats not just home users, a fair few system admins havnt bothered either so the way people look at pc security needs to be looked at - firewall, antivirus, sensible use (i.e down open suspect emails, dont download dodgey looking files) regular checking for security updates.

as to the design of the worm, its like anyother really, just be thankfull it only resets the computers, not wipe the drives etc (which it could have easily been programed to do)
kiddiejon
quote:
Originally posted by jonsimmonds
firstly it shows how many people ignore the automatic updates within windows or not bother to visit http://windowsupdate.microsoft.com , thats not just home users, a fair few system admins havnt bothered either so the way people look at pc security needs to be looked at - firewall, antivirus, sensible use (i.e down open suspect emails, dont download dodgey looking files) regular checking for security updates.

as to the design of the worm, its like anyother really, just be thankfull it only resets the computers, not wipe the drives etc (which it could have easily been programed to do)


majority of people affected were 56k, If i were still on 56k I'd turn the auto-update off too, can you really blame people for turning it off when it rapes your allready non-existant bandwidth?

true though, people should have AV, even if it's ty AVG
jonsimmonds
quote:
Originally posted by kiddiejon
majority of people affected were 56k, If i were still on 56k I'd turn the auto-update off too, can you really blame people for turning it off when it rapes your allready non-existant bandwidth?

true though, people should have AV, even if it's ty AVG


imm 56k... yeah it rapes bandwith, but now people can see what happens if they leave it disabled....

and everyone should have AV, avg is free so no one has a excuse
Moongoose
Im on DSL and i have aouto update turned off. The worm didnt harm me becouse i had port 135 closed (plus many others) It helps to be paranoid from time to time :D

I do check the Microsoft page once a week for fixes though, i just like to do them manualy...its a geek thing :rolleyes:


BTW its luck that the worm didnt d much damage. Messing with remote control aint something to be taken lightly. Everyone remember a few years ago when back orrifice was popular. This worm had the same potential
St_Andrew
if the crators target would have been destroying, the consecveses would have been terrible! The worm actually didn't hurt that much, and i guess most people have downloaded the patch now so the risk for a more dangeraus worm becomming wide spread now is not so big...
PaRaNoIk0
i got that too :\
hey cheggy
Finally, an advantage to running Windows ME. I guess the programmers decided us ME users have suffered enough.
sykadelik
I had this on my home comp last nite, had to dl norton update and windows patch at work and burn it to cd to fix it. Everytime I connect to the net at home my comp says its gonna restart in 59secs. The thing that winds me up is MS refuse to take the blame and pass the buck on to 3rd party code :whip:
MaGiK54
I also had it :whip:

loudcloud
quote:
Originally posted by St_Andrew
if the crators target would have been destroying, the consecveses would have been terrible!


Huh?
MisterOpus1
As a network admin. I would say this was a pretty damn clever bug. Thank God our company got smart enough (and my supervisor listened to me finally) and bought antivirus Enterprise which protected our workstations as well as all our servers (they already had antivirus). Otherwise, we likely would have been seriously f$cked.

I had a few remote users, however, who use VPN to get into their company files, and they got screwed pretty good with the bug. Amazing what a little advice I gave them a while back ago could have done - get antivirus and keep your cpu's update via windows update. Oh well, no one listen's to a damn word I say around here anyway. Nothing new really.
CLICK TO RETURN TO TOP OF PAGE
Pages: [1] 2 
Privacy Statement