|
It appears that a new worm (for now we're calling it msblast after its executable, msblast.exe) has surfaced today. It attacks port 135/tcp (that's Netbios), creates lots of RPC noise - some users report random machine shutdowns and reboots - and once it takes up residence in your computer, it proceeds to scan a random IP range and propagate itself to unprotected machines. Since this worm is brand, spanking new it may not be detected by (even recently updated) anti-virus software.. so get that firewall up and secured!
_http://msn.com.com/4520-6600_16-5062407.html
_http://isc.sans.org/diary.html?date=2003-08-11
_http://news.com/2100-1002_3-5062364.html?tag=fd_top
_http://www.symantec.com/avcenter/venc/data/w32.blaster.worm.html
_http://vil.nai.com/vil/content/v_100547.htm
|
Threaded Mode