Snitz Forums 2000
Snitz Forums 2000
Home | Profile | Register | Active Topics | Members | Search | FAQ
Username:
Password:
Save Password
Forgot your Password?

 All Forums
 Announcements
 Announcements: Community
 IIS5 - Large Scale Attack Found
 New Topic  Topic Locked
 Printer Friendly
Author Previous Topic Topic Next Topic  

redbrad0
Advanced Member

USA
3725 Posts

Posted - 25 June 2004 :  11:50:18  Show Profile  Visit redbrad0's Homepage  Send redbrad0 an AOL message
http://www.msnbc.msn.com/id/5290386/

Brad
Oklahoma City Online Entertainment Guide
Oklahoma Event Tickets

Shaggy
Support Moderator

Ireland
6780 Posts

Posted - 29 June 2004 :  05:04:50  Show Profile
Thanks for the heads up, Brad; would explain hy I was redirected to a Russian porn site which then caused Norton to block a Trojan the other day while I was a-Googling.


Search is your friend
“I was having a mildly paranoid day, mostly due to the
fact that the mad priest lady from over the river had
taken to nailing weasels to my front door again.”
Go to Top of Page

Gremlin
General Help Moderator

New Zealand
7528 Posts

Posted - 29 June 2004 :  06:25:29  Show Profile  Visit Gremlin's Homepage
I read yesterday though they still weren't completely sure of the validity of the attack. It (the server trojan) only effects II5 from what they know or think so far and the main indication of probable infection is a user account created called something like IWAP_WWW.

Edit: http://isc.incidents.org/

Kiwihosting.Net - The Forum Hosting Specialists

Edited by - Gremlin on 29 June 2004 06:28:15
Go to Top of Page

redbrad0
Advanced Member

USA
3725 Posts

Posted - 29 June 2004 :  11:53:48  Show Profile  Visit redbrad0's Homepage  Send redbrad0 an AOL message
http://www.microsoft.com/security/incident/download_ject.mspx

Brad
Oklahoma City Online Entertainment Guide
Oklahoma Event Tickets
Go to Top of Page

Gremlin
General Help Moderator

New Zealand
7528 Posts

Posted - 29 June 2004 :  22:03:16  Show Profile  Visit Gremlin's Homepage
Looks like yet again it was avoidable if people had patched back in April!

Kiwihosting.Net - The Forum Hosting Specialists
Go to Top of Page

redbrad0
Advanced Member

USA
3725 Posts

Posted - 30 June 2004 :  13:50:45  Show Profile  Visit redbrad0's Homepage  Send redbrad0 an AOL message
Yea I think that is the case with 99% of the virus's/worm's. If you do not keep your OS uptodate then its your own falt when something happens. I think alot of the people that write this code find out from the patches the ways to get in and then write's the program to use this.

Brad
Oklahoma City Online Entertainment Guide
Oklahoma Event Tickets
Go to Top of Page

Hamlin
Advanced Member

United Kingdom
2386 Posts

Posted - 30 June 2004 :  16:18:54  Show Profile
quote:
I think alot of the people that write this code find out from the patches the ways to get in and then write's the program to use this.
So in theory is MS never released any updates we would be safer

It always makes me wonder when they say the virus/worm will be around for years due to un-patched machines, do people just not bother to update even after the virus/worm has infected their machine, or is it just new machines being bought/setup etc.

I also think they (MS) should maybe advertise the alternate methods of obtaining the patches more as well. I sent of for a CD with a number of fixes on, it’s very useful if your not on a broadband connection. But on the other hand, is it really their responsibility to get people to update?
Go to Top of Page

redbrad0
Advanced Member

USA
3725 Posts

Posted - 30 June 2004 :  16:21:53  Show Profile  Visit redbrad0's Homepage  Send redbrad0 an AOL message
quote:
Originally posted by Hamlin

[quote]But on the other hand, is it really their responsibility to get people to update?



I think they have done a good job of getting the information to the end user with the Windows Update. They cant force people to install the patchs and cant setup a computer for the first time use to always download the updates. I know I have been to many people's computers that had updates ready to install and their comment was always "Oh I didn't know what that icon was for"

Brad
Oklahoma City Online Entertainment Guide
Oklahoma Event Tickets
Go to Top of Page

snaayk
Senior Member

USA
1061 Posts

Posted - 30 June 2004 :  16:36:13  Show Profile  Visit snaayk's Homepage  Send snaayk an AOL message  Send snaayk an ICQ Message  Send snaayk a Yahoo! Message
Hmm... Perhaps they should automatically download and install all patches and fixes; considering it is in the best interest of the end user. In fact, they should also install SPs. Great thing is that there is already a proven method: Spy Ware

I think people just forget or don't bother [u]until[/] their machine is infected, too late, and a lesson I think few really appreciate. I know folks that continue to get infected/compromised time and time again.
Go to Top of Page

Radweld
Starting Member

United Kingdom
16 Posts

Posted - 07 July 2004 :  14:29:36  Show Profile
I use the Windows Update Service at work to keep my servers patched but they won't allow me to use it for the workstations, apparently the users don't like being forced to re-boot, even if I give them 30 mins grace!

I guess they prefer to keep the users happy than keep the network safe.

Go figure.....

Its do or Die time!, oh well life was fun!
Go to Top of Page

Gremlin
General Help Moderator

New Zealand
7528 Posts

Posted - 10 July 2004 :  06:30:45  Show Profile  Visit Gremlin's Homepage
Personally I have a machine at home running SUS and every other machine checks that daily for updates.

http://www.microsoft.com/windowsserversystem/sus/default.mspx

Kiwihosting.Net - The Forum Hosting Specialists
Go to Top of Page
  Previous Topic Topic Next Topic  
 New Topic  Topic Locked
 Printer Friendly
Jump To:
Snitz Forums 2000 © 2000-2021 Snitz™ Communications Go To Top Of Page
This page was generated in 0.1 seconds. Powered By: Snitz Forums 2000 Version 3.4.07