Results 1 to 9 of 9

Thread: New bot about to spread on the 'net

  1. #1
    Moderator YeOldeStonecat's Avatar
    Join Date
    Jan 2001
    Location
    Somewhere along the shoreline in New England
    Posts
    50,947

    New bot about to spread on the 'net

    http://news.com.com/2100-1009_3-5175...l?tag=nefd_top

    "A new malicious computer program has been detected that can create networks of remotely controlled computers to take part in online attacks, send junk e-mail messages and engage in other shady activities common to the bad neighborhoods of cyberspace.

    The program, known as phatbot or polybot, uses technology like that developed for file sharing networks such as Gnutella and Kazaa to control the machines. ("Bot" is shorthand for "software robot," a term generally applied to automated software.)

    Once the program has made its way onto a victim's computer, it spreads across networks and searches for passwords that are stored on hard drives and are passing across local networks. It also disables antivirus programs and systems for upgrading software security."




    Ahh...going after P2P users such as Kazaa again. Now if only they'd destroy Kazaa and other P2P software users, and leave the rest of us alone.
    MORNING WOOD Lumber Company
    Guinness for Strength!!!

  2. #2
    Regular Member Travlin_Man's Avatar
    Join Date
    Mar 2002
    Location
    Michigan, USA
    Posts
    384
    Thanks for the heads up YOS..

    I just got done helping a couple of friends get rid of the W32/protoride worm (MSUPDATE.EXE) and it was a bitch. So keep your eyes open for that one also.
    TOO MUCH GIDDYYUP,,, NOT ENOUGH WHOA!!!

    Trav

  3. #3
    Moderator YeOldeStonecat's Avatar
    Join Date
    Jan 2001
    Location
    Somewhere along the shoreline in New England
    Posts
    50,947
    First day, already on Symantecs list.
    http://securityresponse.symantec.com...w.polybot.html
    MORNING WOOD Lumber Company
    Guinness for Strength!!!

  4. #4
    SG Enthusiast qball15j's Avatar
    Join Date
    Nov 2001
    Location
    127.0.0.1
    Posts
    3,619
    I heard about that on TechLive last night. The freaky part is the whole password grabber thing. Last night they said they didn't know how to stop it so we'll see what happens.

  5. #5
    Moderator YeOldeStonecat's Avatar
    Join Date
    Jan 2001
    Location
    Somewhere along the shoreline in New England
    Posts
    50,947
    Originally posted by qball15j
    I heard about that on TechLive last night. The freaky part is the whole password grabber thing. Last night they said they didn't know how to stop it so we'll see what happens.
    Yeah, I feel better about it after reading Symantec description..it's using DCom/RPC vuln's as one of the methods...so no worries there (assuming one is prudent and did those cricial updates last year)
    MORNING WOOD Lumber Company
    Guinness for Strength!!!

  6. #6
    SG Enthusiast qball15j's Avatar
    Join Date
    Nov 2001
    Location
    127.0.0.1
    Posts
    3,619
    Originally posted by YeOldeStonecat
    Yeah, I feel better about it after reading Symantec description..it's using DCom/RPC vuln's as one of the methods...so no worries there (assuming one is prudent and did those cricial updates last year)
    Yeah, I hear ya...

  7. #7
    A+, S+, M+, C+, CySA+ Shinobi's Avatar
    Join Date
    Jan 2001
    Location
    South Carolina
    Posts
    4,436
    Blog Entries
    1
    I'll tell ya... it's only a matter of time, before we all see some sort of hybrid "super worm"...
    I'm thinking of making a custom "Live Linux" cd, that loads into memory only... might be good to surf the web with that, in case of a "big" wan type , worm problem in the future....
    Be Happy,
    Shinobi
    _______________________________________________
    Vendor neutral certified in IT Project Management, IT Security, Cisco Networking, Cisco Security, Wide Area Networks, IPv6, IT Hardware, Unix, Linux, and Windows server administration

  8. #8
    Certified SG Addict CableDude's Avatar
    Join Date
    Jun 2001
    Posts
    26,784
    Thanks for the heads up.

  9. #9
    Vood Child hayc59's Avatar
    Join Date
    Jul 2001
    Location
    LSD melts in your mind, not in your hand.
    Posts
    2,355
    thank you for the info!!

    r u xprincD

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •