Authorities may have arrested those responsible for the destructive Sasser and Netsky e-mail worms -- but their effects still linger, according to security firm Sophos.
"Sasser proved to be a major nuisance in May, affecting even more users than even the Netsky worms," said Chris Kraft, senior security analyst. "Requiring no user intervention and taking advantage of a relatively new Microsoft (Nasdaq: MSFT - news) hole, it sneaked onto unprotected PCs, inundating Internet connections."
Young and Powerful
Sasser, apparently launched by an 18-year-old young man from Germany, wound up disrupting not only countless home users' PCs, but also systems at Delta Airlines and the Coast Guard. Indeed, the story of Sasser is a sorry lesson for all concerned, illustrating that even the slightly skilled now are able to disrupt corporate networks.
At least that is what Panda Software CTO Patrick Hinojosa finds so maddening about Sasser. "It is very simple to write these things," he told NewsFactor, "and with some worms -- e-mail worms in particular -- it takes hardly any skill at all. You can do it from a kit, in fact."
The Sasser worm easily could have been stopped in its tracks from the outset, Hinojosa says, as Microsoft identified the vulnerability and offered a patch for it a few weeks before the worm appeared. "This element of network security is not rocket science -- it is a default configuration."
Keep On Coming
The situation is not getting any better, according to Sophos. "Both Sasser and Netsky may have captured the headlines, but there were many other viruses written this month -- 959 in total," Kraft said. "In the month of May, we saw a considerable increase in cyber-criminal activity, which suggests that even the arrest of Sven Jaschan, the German teenager who has owned up to writing Sasser and Netsky, has done very little to limit the problem."
The 959 new viruses Sophos identified in May represent the highest number of new viruses discovered in a single month since December 2001, the firm said.
Written by: Erika Morphy, www.enterprise-security-today.com
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment