Jump to content
xisto Community
sparx

Worm Alert - W32.zotob.a new worm to hit Windows PCs

Recommended Posts

A new worm has been detected by multiple antivirus and security specialists. It's called ZOTOB and is exploiting security holes that have been earlier highlighted in Microsoft Security Bulletin MS05-039.

The worm affects Win2000 systems and newer. Win 98, ME etc. are not currently thought to be at risk although, one must always keep the holes plugged.

Details regarding what it does exactly and removal instructions can be found at Symantec's site and also at Microsoft's ZOTOB Advisory page

The hole allowing Zotob to infect and spread can be fixed by installing MS Security Update 899588

Keep your antivirus up to date as well. Good Luck!

Share this post


Link to post
Share on other sites

Yea I heard about that, my boss has us reworking login scripts to patch up machines here (I'm working at a tech support place for the summer) but I'm hoping it doesn't get too bad. Big virus/worm outbreaks == annoying *****y people yelling at us all day :D

Share this post


Link to post
Share on other sites

Days like today I am glad we run Macs. We had CNN on and they were going on about this for at least an hour. Wolf Blitzer trying to ad lib about technology was actually kind of sad and pathetic. It must of really been a slow news day.

Share this post


Link to post
Share on other sites

Haha that woulda been good to see lol.But yea I dont really love macs BUT as far as having lots of comp illiterates using software they barely comprehend is concerned, yes having them running on macs would be preferable... some of the virus laden spyware consumed systems I've seen here make me cry :'( People have too much power on windows machines here... and by too much power I mean "they can go on the internet using IE and break things"

Share this post


Link to post
Share on other sites

seen and heard about that on TV today, indeed... but they said that this isn't done just to make some pain in the *bottom*, but it's more to make some profit out of it. I don't know how exactly, but I think it's true..

Share this post


Link to post
Share on other sites

Just some general security notes which could help many people, both of which occured to me in connection with the recent worm outbreak:

 

1. One of the best ways to prevent worm infections is to make one's system completely invisible to the outside world, in other words, to stealth it. One of the best places to check to see if your system is invisible is at Gibson Research's Shield's Up. (No, guys, that's not an affiliate link. That's just the way he likes to do his URLs. As a result of testing there, I realized that even though I have good software firewalls on both my desktop machines, I should also activate the firewall in the router, since otherwise my network is visible to port scans and other probes from the outside world. Check out his other freeware security utilities also.

 

2. Most people should block all TFTP communication in their firewalls. That protocol may have some legitimate uses, but I've never seen it used for anything but worms, including Zotob.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now

×
×
  • Create New...

Important Information

Terms of Use | Privacy Policy | Guidelines | We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.