Cameras
Camcorders
Cell Phones
Components
Desktops
HDTV
Home Theater
GPS
Laptops
Monitors
MP3 Players
Networking &
Printers
Storage
WiFi Finder
Locate wireless services by a specific address, city, state, country, airport, or zip code.
Code Red II Worm on the Loose
New worm installs a backdoor in servers, giving attackers access to infected computers.
Martyn Williams, IDG News Service
A new and potentially more serious version of the Code Red worm began circulating over the weekend, according to several computer security companies and services.
Code Red II is said to be more aggressive than the original worm because it installs a backdoor in servers that allows attackers to easily access infected computers. Once logged in, attackers can gain control of the machine by changing passwords; they can also copy, browse, or delete files.
Like the original Code Red, the new worm targets computers running Microsoft's Windows 2000 and Windows NT 4.0 operating systems and the Internet Information Server software, says Computer Associates International.
Personal computers running other operating systems, including other versions of Windows, are not targeted by Code Red or Code Red II. Neither are Windows 2000 machines that are not running IIS.
Code Red II is not a variant of the original Code Red, according to Security Focus, but rather a brand-new worm that shares signatures of the original and imitates the method of attack. Machines already infected with Code Red can be reinfected with Code Red II, and it may be more difficult to detect because it automatically dies after two days, says Security Focus.
Server operators are said to be able to recognize the new version of the worm by a string of letter "X"s it sends in place of the "N"s sent by the original version, says the Incidents.org security Web site.
The good news is that the new worm does appear to be stopped by the Code Red patch that is available from Microsoft and already installed on thousands of computers, according to Computer Associates.
Security Focus recommends that server administrators who have not already downloaded the Code Red patch from Microsoft do the following: Download Microsoft's patch from the Internet; disconnect your machine from the Internet; reboot your system to clear the worm from memory; apply the patch to prevent reinfection; reboot your system; and reconnect to the Internet.
Code Red was originally discovered in mid-July, shortly before it caused infected machines to launch a denial of service attack against the White House Web server. The worm lay dormant from July 27 until the end of the month, when it reactivated and began to infect computers again.
Microsoft Office Home and Student 2007
Full Windows 7 coverage
- Great year-end deals for small business!
-
Get 24/7 live remote AT&T Tech Support 360* service along with select Lenovo* PCs (with Intel® Core™ 2 Duo processors and save up to 200!
-
HP EliteBook* 6930p Notebook with Intel® vPro™ technology and a free HP Basic Docking Station - $641 instant savings!
- *Other names and brands may be claimed as the property of others. ©2009 Intel Corporation. Intel, the Intel logo, vPro and Core trademarks of Intel Corporation in the United States and other countries. All rights reserved.
People who read this also read:
Best Prices on Antivirus Software
Norton Antivirus 2010 (Full Product, 1 User)Price: $17.90
Anti-virus 2010 (OEM Product, 1 User)Price: $20.99
AntiVirus 2010 (Full Product)Price: $24.95
Norton AntiVirus 2009 (Full Product)Price: $16.89
AntiVirus Plus 2010 - 3 Users (Full Product)Price: $11.95
Anti-Virus 2009 (Full Product)Price: $15.04
-
Perfect Printing Solutions Find just the right All-in-One Printer for you from HP. Visit the HP Resource Center.
-
Acer Laptop Center Forget the Mouse...check out the next generation multi-gesture touch screen technology from Acer.
-
Dell Shopping Center Check out great deals from Dell!
