Sasser net worm affects millions
Sasser spreads through networks by itself
The Sasser worm is continuing to cause disruption for large numbers of Windows PC users.
The first version of the malicious program was discovered on 1 May and since then has spread widely across the internet.
Some security experts estimate it has infected more than a million PCs and knocked out many computer systems.
Unlike more recent viruses, Sasser does not travel by e-mail instead it makes its way around the internet unaided.
Shut down
In at least seven cases, disruptions at large companies have been blamed on machines infected by Sasser.
The virus can infect PCs running Windows 2000 and XP that are not patched against the loophole it exploits.
According to anti-virus firms machines running Windows 95, 98 and Millennium Edition can help spread Sasser even though they cannot be infected by it.
The security firms urged users to install the latest security patches from Microsoft and advised home broadband users to install and run a firewall.
The virus is called a worm because it searches out machines to infect by itself without any help from users.
So far four variants of Sasser have been seen in the wild.
The latest version, Sasser.D, scans so aggressively for new computers to infect that it may cause networks to become congested with packets of data and slow down.
Poor programming by Sasser's creator makes infected machines shut down.
Microsoft and many security firms have released tools that help people find out if they are infected and to help them remove the virus from their system.
Users hit
Early reports suggest that home users will be hit hardest as many broadband users do not have a firewall fitted that would protect them from malicious programs like Sasser.
F-Secure said that many large companies had already installed the patch for the vulnerability Sasser exploits which may limit the ultimate spread of the worm.
Those that had not patched have been hit hard.
Taiwan's national post office said 1,600 of its machines were hit by the virus which forced more than 400 of its 1200 branch offices to revert to pen and paper.
The disruption left customers queuing in long lines at many of the company's offices, according to television reports.
Two Hong Kong government departments and some hospitals on the island were hit by the virus.
In Australia Railcorp trains were halted apparently because a virus disrupted the radio systems and stopped drivers talking to signalmen.
Also in Australia Westpac Bank staff were forced to use manual methods to record transactions as the virus made computers unusable. Two other banks reported infections.
Finnish bancassurer Sampo said it had temporarily closed all its 130 branch offices as a precaution against Sasser.
US airline Delta would not comment on reports that the virus caused disruption to its schedule.
Patch here
Microsoft played down reports that millions were being infected by Sasser.
It reported that almost four times as many PC owners were downloading patches for security problems now compared to autumn in 2003.
A patch for the vulnerability Sasser exploits was first released on 13 April and then updated on 28 April.
Holidays in the UK, parts of Europe and Japan may also help to limit the spread of the worm.
Some security experts said that using Sasser removal tools may not end the trouble because many of those caught out by it have also been infected by other viruses.
Creators of other malicious programs are trying to cash in on the success of Sasser.
The latest version of the Netsky virus, the 29th variant, travels with a file that claims to be a cure for Sasser sent out by anti-virus firms.
Inside this version the creators of Netsky claim that they were responsible for making Sasser too.
Whatever, I didn't post it in chillout by accident, that was done on purpose because not everyone visits security and it's a pretty serious issue today.
I'm not going to argue about this with you, the post belongs in security and it is still visible to everyone on the quick launch bar for now - by the end of the day it would have been at the bottom of the chill out relax section and nobody would have seen it anyway unless it was bumped. At least now it's still at the top of the security section, and will stay at the top for a while.
DAM!!! my poor cousin... he never knew what hit him. His Home PC was dying i told wait a few days before you format a removal tool will come... tsk...tsk
"Fake smiles surround me all day,
No more can I tolerate,
These excuses
or all this" - Chimaira
Oh my, trigger happy again I see..... hmmmm such importance....
"Integrity" and "integer" both contain a Latin root meaning "whole; complete." The root sense, then, is that people may be said to be acting with integrity when their beliefs, words, and actions have a sense of unity or wholeness.
"Integrity" and "integer" both contain a Latin root meaning "whole; complete." The root sense, then, is that people may be said to be acting with integrity when their beliefs, words, and actions have a sense of unity or wholeness.
Jee wrote:That is exactly what i'm talking about.....
Just like you to side with anyone who disagrees with me. The fact of the matter is the topic belongs here, if you don't like it, too bad. I'm not wasting my time with you anymore.
Ok Thrall, but only because of respect for you.....
"Integrity" and "integer" both contain a Latin root meaning "whole; complete." The root sense, then, is that people may be said to be acting with integrity when their beliefs, words, and actions have a sense of unity or wholeness.
