×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

A Worm's Worm

michael posted more than 9 years ago | from the meta dept.

Security 345

Carnildo writes "There's a new worm out, according to the Register, but one with a twist. This one, called 'Dabber', infects computers by exploiting a security hole in the Sasser worm."

cancel ×
This is a preview of your comment

No Comment Title Entered

Anonymous Coward 1 minute ago

No Comment Entered

345 comments

EAT SHIT AND DIE! I HATE SLASHDOT! (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158116)

*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_
g_______________________________________________g_ _
o_/_____\_____________\____________/____\_______o_ _
a|_______|_____________\__________|______|______a_ _
t|_______`._____________|_________|_______:_____t_ _
s`________|_____________|________\|_______|_____s_ _
e_\_______|_/_______/__\\\___--___\\_______:____e_ _
x__\______\/____--~~__________~--__|_\_____|____x_ _
*___\______\_-~____________________~-_\____|____*_ _
g____\______\_________.--------.______\|___|____g_ _
o______\_____\______//_________(_(__>__\___|____o_ _
a_______\___.__C____)_________(_(____>__|__/____a_ _
t_______/\_|___C_____)/______\_(_____>__|_/_____t_ _
s______/_/\|___C_____)_______|__(___>___/__\____s_ _
e_____|___(____C_____)\______/__//__/_/_____\___e_ _
x_____|____\__|_____\\_________//_(__/_______|__x_ _
*____|_\____\____)___`----___--'_____________|__*_ _
g____|__\______________\_______/____________/_|_g_ _
o___|______________/____|_____|__\____________|_o_ _
a___|_____________|____/_______\__\___________|_a_ _
t___|__________/_/____|_________|__\___________|t_ _
s___|_________/_/______\__/\___/____|__________|s_ _
e__|_________/_/________|____|_______|_________|e_ _
x__|__________|_________|____|_______|_________|x_ _
*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_g_o_a_t_s_e_x_*_


Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

Important Stuff: Please try to keep posts on topic. Try to reply to other people's comments instead of starting new threads. Read other people's messages before posting your own to avoid simply duplicating what has already been said. Use a clear subject that describes what your message is about. Offtopic, Inflammatory, Inappropriate, Illegal, or Offensive comments might be moderated. (You can read everything, even moderated posts, by adjusting your threshold on the User Preferences Page) If you want replies to your comments sent to you, consider logging in or creating an account.

Go see a therapist (-1, Redundant)

Anonymous Coward | more than 9 years ago | (#9158173)

if you expend this much negative energy on a public message board, then you have major issues with which to deal.

I ALREADY SEE ONE, COCKSUCKER! HE SAID THAT I (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158218)

SHOULD GET FP!!!!1

Cowboy Neal doesn't count.... (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158240)

go see a real one. or a different one.

INHALE MY SEMEN YOU SLASHDOT APOLOGIST FAGGOT! (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158265)

YOU CRAVE CUM!

I'm not "apologist" anything (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158287)

What's your deal? What are you so angry about? Oh, and you can turn off the caps-lock anytime now...

Ugh... (5, Funny)

c0dedude (587568) | more than 9 years ago | (#9158117)

Jeez, they never fully test these worms before release. No wonder they'd have security issues.

Re:Ugh... (5, Funny)

irokitt (663593) | more than 9 years ago | (#9158222)

This is why every worm should be released under the GPL. Then independant worm enthusiasts can verify the security of worm code and contribute patches and improvements to the author.

Re:Ugh... (5, Funny)

dealsites (746817) | more than 9 years ago | (#9158223)

I imagine that most of these virus writers are not formally educated in programming, but able to hack together code snippets they find on the web. It's a wonder some of them work as well as they do. I doubt they do peer review or use a CVS to manage their code.

--
New deal processing engine online: http://www.dealsites.net/livedeals.html [dealsites.net]

Re:Ugh... (2, Interesting)

Anonymous Coward | more than 9 years ago | (#9158256)

Most virii are rather small in code size compared to a typical project using CVS or similar tools. That means a single person can easily manage and oversight the code.

Re:Ugh... (5, Insightful)

inertialmatrix (675777) | more than 9 years ago | (#9158355)

"most of these virus writers are not formally educated in programming, but able to hack together code snippets they find on the web. It's a wonder some of them work..."

heh.. sure, right. God knows that unless you have a masters in CS your only chance to program something like code red, blaster, or sasser is by hacking "together code snippets [you] find on the web" Christ, 3 years into a CS major, and aside from the calculus I have yet to make any large leaps in knowledge over what I already knew several years ago.

Maybe that's what grad school is for?

Re:Ugh... (1)

dealsites (746817) | more than 9 years ago | (#9158378)

That is true... I guess I had the term "script kiddies" in my head and assumed that these were pre-college programmers. I'm getting a little older now, but I assume that they are probably teaching programming in high-school now. Does anyone know what grade the first introductory programming classes are now offered in?

--
New deal processing engine online: http://www.dealsites.net/livedeals.html [dealsites.net]

Re:Ugh... (3, Insightful)

taped2thedesk (614051) | more than 9 years ago | (#9158408)

A lot of schools used to offer as a electives in high school, but thanks to constant budget cuts, the "leave every child behind" act, etc, many have had to drop these classes. Pretty sad.

DMCA violation? (4, Funny)

David Hume (200499) | more than 9 years ago | (#9158356)


Jeez, they never fully test these worms before release. No wonder they'd have security issues.


I wonder if the author of the author of Dabber has violated the DMCA by circumventing a copyright protection system [cornell.edu] -- i.e., the code to the Sasser worm.

More specifically, I wonder if the author of Sasser can sue the author of Dabber for statutory damages of up to "$2,500 per act of circumvention [cornell.edu]." ;)

Re:DMCA violation? (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158367)

bullshit. no copy protection involved at all.

Frost piss (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158118)

You insensitive clod

CLIMB INTO MY FP ANUS, FAILURE!!! YOU FAIL IT! (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158168)

YFI!!!!!

Hmm... (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158206)

do you push small kids out of your way to get to the front of the line at the ice cream truck? Sociopath.

all new low (5, Funny)

ResQuad (243184) | more than 9 years ago | (#9158123)

This is an all new low. Now virus programmers will have to make their virus's better so they dont get infected by another virus.

I think everyone should go ultra secure, the best firewall ever... Disconnect from the net. It would make this all alot easier on us.

Re:all new low (0)

Anonymous Coward | more than 9 years ago | (#9158190)

Ok, you start. We'll all disconnect after you do. And while you're disconnected, learn some grammar. alot? dont?

Actually sounds like somebody trying to fix things (5, Interesting)

Ungrounded Lightning (62228) | more than 9 years ago | (#9158416)

This is an all new low. Now virus programmers will have to make their virus's better so they dont get infected by another virus.

Actually, this sounds like somebody trying to make a disinfectant worm. Look at the description:

- It only infects infected systems, using a flaw in the previous infection.

- It cleans out the infection of the worm that it exploited, and several others.

It does open a new backdoor. But while that might be preparation for some future malicious action, it might also have been the author leaving himself a way to fix things if his initial worm got out with a destructive bug. (Of course it could be the worm cleaning up signs of previous infections in order to hide itself and thus head off other cleanups.)

I wouldn't be surprised to see, on further analysis, that it does other antimalware things (like fix the flaw the other worms used).

(Not to say that it IS somebody trying to fight virus with virus. But it might be interesting if it turns out that it is.)

I think everyone should go ultra secure, the best firewall ever... Disconnect from the net. It would make this all alot easier on us.

Which is exactly what the military does with some of its really secure stuff.

Now if we can just get the Microsoft users to emulate them. B-)

New first post (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158128)

Theres a new first post out, but with a twist, it's spelled FR0ST P5IST5IST!!!

YOUR FAILURE DESERVES MY NONFAILING URINE (-1, Troll)

Anonymous Coward | more than 9 years ago | (#9158189)

ALL OVER YOU! YFI!

Do you brag to folks about this stuff? (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158270)

Stories for the kids or grandkids perhaps? Seriously, what drives you to make FP such a twisted competition? Your negative energy abounds - there is nothing positive about anything you've posted to this article. What gives?

Sasser exploit (1, Insightful)

dresgarcia (251585) | more than 9 years ago | (#9158129)

Its a shame that its come to the point where a worm will exploit another worm to screw stuff up. I am so glad I moved to linux.

Same for my mac (0, Redundant)

eroyce (698151) | more than 9 years ago | (#9158154)

Ah yes, the wonderful life of Linux and Mac.

Re:Same for my mac (4, Funny)

gmuslera (3436) | more than 9 years ago | (#9158245)

In computing are the windows the ones with worms, not the apples.

Re:Same for my mac (1, Funny)

Anonymous Coward | more than 9 years ago | (#9158372)

No, to stick with tradition, these should be called termites. Who do you think you are, suggesting windows can have worms, upsetting the delicate balance of the oh-so-perfect english language?

Re:Sasser exploit (1, Redundant)

boarder8925 (714555) | more than 9 years ago | (#9158163)

Its a shame that its come to the point where a worm will exploit another worm to screw stuff up. I am so glad I moved to linux.
What about OS X?

Re:Sasser exploit (0)

Anonymous Coward | more than 9 years ago | (#9158310)

OS X makes me drool. so pretty... and it has a shell... 8-)
however, I'm still a linux zealot at heart.

Re:Sasser exploit (-1, Offtopic)

dustmite (667870) | more than 9 years ago | (#9158345)

Wow, a slightly pro-linux, on-topic, otherwise entirely unoffensive post gets modded "Troll"? Now I'm certain that mods are being manipulated somehow.

blehheheh!! (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158131)

jkjhjhsj syaa

Clever (-1, Redundant)

iswm (727826) | more than 9 years ago | (#9158132)

Very clever

Re:Clever (1)

osu-neko (2604) | more than 9 years ago | (#9158140)

Yes. Normally, I think virus writers are just scum, but I have mixed feelings about this one. This is just so damned cute...

Re:Clever (4, Funny)

beakerMeep (716990) | more than 9 years ago | (#9158299)

oh the irony.

a post with the title "clever" and the text "very clever" in a story about a "worm's worm" moderated as "redundant".

It's like rain on a rainy day.

geez (3, Insightful)

killerface (573659) | more than 9 years ago | (#9158133)

You know this seems at first to be really creative . But think he/she is just riding on sassers coattails

Not really surprising (5, Insightful)

cemaco (665884) | more than 9 years ago | (#9158277)

In the last few years, the guys who write this stuff have become more and more like gangs. In the real world, gangs compete for terf. That includes undermining each other whenever possible.

Re:geez (4, Funny)

0racle (667029) | more than 9 years ago | (#9158309)

You know, Blaster and Sasser seemed at first to be really creative. But think he/she is just riding on Windows coattails.

planned (4, Interesting)

name773 (696972) | more than 9 years ago | (#9158134)

did the sasser writer make it expandable on purpose? this isn't the first time a thing like this has happened.

Re:planned (1)

NorwBlue (711956) | more than 9 years ago | (#9158428)

No can't have been planned. The writer of sasser proved that he knew enough about programming to that. Even microsoft got sued for doing that, and at x a license he would have been ruined.(hint:explorer plugin thingy)

does it fold origami? yawn (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158135)

yawn

First post (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158139)

First post!

EAT MY SHIT-FILLED FP AND DIE, FAILURE! FAILURE! (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158248)

YFI!!!11!

Lots of anal and sexual references... (-1, Offtopic)

Anonymous Coward | more than 9 years ago | (#9158312)

Do you have low self-esteem, or were you abused as a child?

This is why... (5, Funny)

boffy_b (699458) | more than 9 years ago | (#9158141)

...we need to stop relying on thrid-party worms, we need Micro-Soft certified worms to ensure our securtity....

Re:This is why... (3, Interesting)

wmspringer (569211) | more than 9 years ago | (#9158276)

You mean like IE? I've certainly had enough programs try to get me to install that on my computer..

Re:This is why... (4, Funny)

duffel (779835) | more than 9 years ago | (#9158371)

...we need to stop relying on thrid-party worms, we need Micro-Soft certified worms to ensure our securtity....
You mean like IE? I've certainly had enough programs try to get me to install that on my computer..
Wouldn't that be a trojan horse rather than a worm? Worms are more like those automatic updates, burrowing into your system... Although that program that downloads them would be more like a trojan horse, and the downloading of updates the payload...

Yes, that's it! Windows is a trojan horse designed to sneek windows updates onto your computer!

Tremble before my mighty logic!

Re:This is why... (0)

sweet cunny muffin (771671) | more than 9 years ago | (#9158330)

Just who the hell are "Micro-Soft"? The company is called "Microsoft". Just look at their website at http://www.microsoft.com/ (not http://www.micro-soft.com/) to verify this. This is even worse than the MicroSoft people, and arguably worse than M$, as at least they're trying to make some sort of (childish) point, and you're just being dumb.

Re:This is why... (1)

boffy_b (699458) | more than 9 years ago | (#9158353)

1. They were called Micro-Soft back in the day. 2. I have a fetish for over-using hyphens. 3. Count to 10 and breathe.

Re:This is why... (0)

Anonymous Coward | more than 9 years ago | (#9158399)

And be able to patch our worms with new & improved code from Windows Update. Wish RHN could do something like that for us cheapskates who won't pay the price for a full-fledged window to have our worms in... :(

Spyware and others (5, Interesting)

r.jimenezz (737542) | more than 9 years ago | (#9158142)

Just thought about this... With the huge number of machines out there "infected" by spyware, adware and similar programs (and many of them without their users even knowing), how long will it be until a worm is written that exploits a vulnerability in one of these programs?

Re:Spyware and others (0)

Anonymous Coward | more than 9 years ago | (#9158249)

I think you're misunderstanding. These are Windows viruses, so they're already exploiting the spyware/adware programs of which you speak.

Re:Spyware and others (4, Funny)

clambake (37702) | more than 9 years ago | (#9158394)

Just thought about this... With the huge number of machines out there "infected" by spyware, adware and similar programs (and many of them without their users even knowing), how long will it be until a worm is written that exploits a vulnerability in one of these programs?

Gimme a sec.

Is not the first time it happens (3, Informative)

gmuslera (3436) | more than 9 years ago | (#9158152)

I think the Nimda worm exploited vulnerabilities created by CodeRed a few years ago.

Re:Is not the first time it happens (5, Informative)

grunthos (574421) | more than 9 years ago | (#9158225)

No, they both exploited the same holes in IIS.

Perhaps you are thinking of Welchia [viruslist.com] which exploited IIS but also removed Blaster.

Antivirus! (2, Interesting)

ForestGrump (644805) | more than 9 years ago | (#9158158)

"Dabber then installs itself and deletes the registry keys of Sasser and other viruses. It creates a backdoor on infected machines on TCP port 9898 allowing hackers to download additional code, which might be far more malicious than Dabber itself."

sounds like its doing some antivirus while its at it. Good!

Just be sure to block off 9898.
-Grump

Re:Antivirus! (2, Insightful)

r.jimenezz (737542) | more than 9 years ago | (#9158193)

sounds like its doing some antivirus while its at it. Good!

Nah, let's not fool ourselves. This is probably just so that you can run a Sasser removal tool, find nothing and feel yourself at ease thinking your machine is clean :(

Re:Antivirus! (2, Interesting)

c0dedude (587568) | more than 9 years ago | (#9158235)

Do you really think those infected with sasser will know how to block off a TCP port, much less what TCP is?

Re:Antivirus! (3, Funny)

Jedi Alec (258881) | more than 9 years ago | (#9158284)

yeah, kinda like a dictator being replaced by one that's even worse. i can just feel the revolution on my harddisk taking place...

Plug-in (5, Funny)

StateOfTheUnion (762194) | more than 9 years ago | (#9158166)

So now worms come with hooks for third party plug-in's?

Re:Plug-in (4, Interesting)

SharpFang (651121) | more than 9 years ago | (#9158295)

Yes, for quite a while.

Quite a bit of modern worms in this or that way provide just a generic backdoor to the infected machine without performing any extra malice. Some of them just open oprts, some trick firewalls and actively "call home", which usually happens to be some random IRC server on some compromised machine (IRC seems to be preferred method for the virii writers for controlling worms, which just act as bots on the channel). Then the virii can upload a spamming software, a DDoS attack plugin, a keystroke logger, a file transfer thing, a tunneling/relay program to mask an attack, or whatever the twisted minds come up with.

Re:Plug-in (1)

whiteranger99x (235024) | more than 9 years ago | (#9158320)

Yeah, as a matter of fact, they support the random playing of MP3s, producing some form of visualizatiions and gibberish on the screen, talking to other people's computers by entering before knocking, and displaying hostile messages on people's screens.

I'm sure they'll allow for MORE functionality to cripple computers with! :)

So, naturalists observe, a flea... (4, Insightful)

jbuhler (489) | more than 9 years ago | (#9158167)

Hath smaller fleas that on him prey;
And these have smaller still to bite 'em;
And so proceed ad infinitum.

- Swift

kinky (0)

Anonymous Coward | more than 9 years ago | (#9158175)

bit of an oxymoron from a biosciences perspective...

um... (5, Funny)

Anonymous Coward | more than 9 years ago | (#9158177)

Would that make the security flaw a ::cough:: "Wormhole"?

Re:um... (0)

Anonymous Coward | more than 9 years ago | (#9158288)

somone mod this guy up. this one had me in the milk out the nose hold.

what Microsoft is thinking (4, Insightful)

Anonymous Coward | more than 9 years ago | (#9158179)

maybe we should make a virus that causes everyone to hit up Windows Update and maybe we'll be alright.

It's ok... SP1 is coming soon (5, Funny)

licamell (778753) | more than 9 years ago | (#9158186)

The author in response to the news announce that he will be releasing Service Pack 1 within the next week. Make sure to set up your computer to get updates automatically from update.sasser.com.

Re:It's ok... SP1 is coming soon (4, Informative)

int2str (619733) | more than 9 years ago | (#9158410)

Nope, the Sasser author is going to Jail (http://www.heise.de/newsticker/meldung/47205 - sorry, in german).
SP1 will be a while ;)

Just like the Anti-HIV Virus! (5, Insightful)

Cyberherbalist (731257) | more than 9 years ago | (#9158191)

There was something on /. the other day about a team of biologists who built a virus based on HIV, that goes out to destroy HIV ability to turn to AIDS. Apparently, the Dabber developer took a page from that book --- in a twisted sort of way.

MS is on it... (5, Funny)

wo1verin3 (473094) | more than 9 years ago | (#9158202)

Microsoft Security Bulletin MS05-014
Security Update for Microsoft Windows (93212)

Issued: May 14, 2004
Updated: May 14, 2004
Version: 1.0

Summary
Who should read this document: Customers who use the Sasser worm

Impact of vulnerability: Remote Code Execution

Maximum Severity Rating: Critical

Recommendation: Customers running the Sasser worm should apply the update immediately to be protected from Dabber.

Security Update Replacement: This bulletin replaces several prior security updates. See the frequently asked questions (FAQ) section of this bulletin for the complete list.

Caveats: The security update is for Windows 2000, XP Pro and Home, and Windows 2003 server platforms. As a prerequisite, the security update requires your system be infected with Sasser.

To download the Sasser worm, please open Outlook Express or Outlook 2000/XP and execute any attachements you have recieved from unknown senders. If you are not using Sasser you do not need to install this update.

Once installed your system will be immune from being infected with Dabber which exploits a flaw in the widely popular Sasser worm.

Tested Software and Security Update Download Locations:

Affected Software:

Microsoft Windows 2000 Service Pack 2, Microsoft Windows 2000 Service Pack 3, and Microsoft Windows 2000 Service Pack 4 - Download the update [albinoblacksheep.com]

Microsoft Windows XP and Microsoft Windows XP Service Pack 1 - Download the update [albinoblacksheep.com]

Microsoft Windows XP 64-Bit Edition Service Pack 1 - Download the update [albinoblacksheep.com]

Microsoft Windows XP 64-Bit Edition Version 2003 - Download the update [albinoblacksheep.com]

Microsoft Windows Server(TM) 2003 - Download the update [albinoblacksheep.com]

Microsoft Windows Server 2003 64-Bit Edition - Download the update [albinoblacksheep.com]

IE users: don't click above links! (1, Informative)

Anonymous Coward | more than 9 years ago | (#9158397)

While this is really funny, IE users should be warned that clicking the albinoblacksheep.com links can cause multiple spawning windows.

I know, I am an idiot, but I thought the flash demo might be funny also. The post was funny, but the web site was not.

This is *almost* a wonderful thing (5, Insightful)

Gribflex (177733) | more than 9 years ago | (#9158207)

Dabber than installs itself and deletes the registry keys of Sasser and other viruses.

This is fantastic! It is a virus, that infects only virus infected machines, and then removes all other virii. What a great solution to rapidly spreading worms.

If users are too lazy or ignorant (in the nice sense of the word) to patch their systems, then just relase another virus to do it for them.

Except that...

It [then] creates a backdoor on infected machines on TCP port 9898 allowing hackers to download additional code...

They just couldn't stop at doing a good thing, could they...

Re:This is *almost* a wonderful thing (1)

MrRuslan (767128) | more than 9 years ago | (#9158244)

This is only half way joking but microsoft knows some user dont update for whatever reason be it lazieness or ignorance.now what if they write a "virus" similar to this that patches the system for newly found critical remote hole and then destroys itself after a certian amount of time.I know it's not legal or anything but it's just an idea.

Seems Like (2, Insightful)

MrRuslan (767128) | more than 9 years ago | (#9158211)

the windows RPC implimintation and the LSASS share some similar quilities with worms and back doors, One has to wonder how much more of windows has the same charictaristics of a virus.

A Quick Fix (3, Funny)

magefile (776388) | more than 9 years ago | (#9158246)

Everyone:
  • if you have windows, type, "format C:"
  • if you have linux, or Mac OSX, type "su if you have a pre-OSX Mac, get someone to translate the above commands for you
That'll take care of the folks who don't patch or use a firewall or AV. I figure anyone smart enough to do that won't run the commands ... and anyone running a different OS won't have virus issues anyway (and will probably be smart enough to firewall, too!).

Re:A Quick Fix (2, Funny)

whiteranger99x (235024) | more than 9 years ago | (#9158340)

That'll take care of the folks who don't patch or use a firewall or AV.

Dude, you forgot the following steps:
  • Unplug the computer from the walls
  • Detach peripherials from computer
  • Put computer back in box
  • Ship it back out

Why? BECAUSE YOU'RE TOO FUCKING STUPID TO USE A COMPUTER!!! ;)

Re:A Quick Fix (5, Funny)

rjshields (719665) | more than 9 years ago | (#9158360)

if you have windows, type, "format C:"

Why yes, I have windows. I even have doors too. I typed "format C:" like you said but I just got a message saying "the page cannot be displayed".

Remind Anyone of Blaster (5, Interesting)

erikharrison (633719) | more than 9 years ago | (#9158293)

Gosh, this whole mess looks just like Blaster from down here in the trenches.

I'm tech support for Tremendously Large ISP. From down here this looks just like Blaster did. Customers calling in complaining that their machine is restarting without their consent. And now someone has a follow up virus that attacks the virus - as some may recall there was a Blaster variant that patched systems AGAINST Blaster. This was terrible - if you got this variant inside a corporate network not only would your bandwidth use skyrocket, but since NAT tends to fubar Windows Update, the variant never managed to patch a system. God that was hell . . .

It's almost enough to make you want to write a virus in revenge . . .

How is this different... (0, Troll)

burtonator (70115) | more than 9 years ago | (#9158305)

than all the worms that have been infecting the the Windows worm that has been infecting computers for years.

Last time I checked that stupid Windows worm has infected nearly every damn computer on the planet.

I agree that these stupid worm writers (Microsoft) need to improve their security so that they don't become hosts to yet more worms.

Sigh... (5, Funny)

ike6116 (602143) | more than 9 years ago | (#9158339)

I told you not to try Sasser, it's a gateway worm! IT LEADS TO HARDER, MORE DANGEROUS WORMS!

It's amazing the harm one person can do... (3, Interesting)

exp(pi*sqrt(163)) (613870) | more than 9 years ago | (#9158346)

...with some software with the ability to self-replicate. God help the rest of the universe when life finally manages to get off this planet.

my dog (1, Offtopic)

yodaj007 (775974) | more than 9 years ago | (#9158388)

Does this mean my dogs heart-worms have heart-worms? The idea of recursively-defined worms frightens me for some reason.

OS Popularity? (4, Interesting)

One Louder (595430) | more than 9 years ago | (#9158430)

The tired argument is that Mac OS X and Linux are too unpopular to build worms and viruses for - but apparently it's worth writing worms just for Windows machines infected by a single strain of worm.

Does this situation imply that the sum total of Sasser-infected machines outnumber Macs and Linux boxes?

Load More Comments
Slashdot Account

Need an Account?

Forgot your password?

Don't worry, we never post anything without your permission.

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>
Sign up for Slashdot Newsletters
Create a Slashdot Account

Loading...