Join  |  Login  |   Cart    

Notary Rotary
Welcome to Notary RotaryFind a NotaryNotary ForumBecome a Notary and Find Notary ClassesNotary InsuranceNotary SuppliesNotary Resources 
 
Dasher worm gallops onto the Net
Notary Discussion History
 
Dasher worm gallops onto the Net
Go Back to December, 2005 Index
 
 

Posted by PAW_Fl on 12/19/05 10:46am
Msg #83386

Dasher worm gallops onto the Net

by Dawn Kawamoto , Staff Writer, CNET News.com | Published: 12/16/05

Takeaway: Network worm now hitting PCs spreads spying software via a recently patched hole in Windows.

A Windows-targeted worm that drops spying software on vulnerable PCs is spreading across the Internet, security experts have warned.

The Dasher.B worm exploits a flaw in Microsoft Windows Distributed Transaction Coordinator, or MDTC, security companies said Friday. Microsoft announced and patched the hole in the component for transaction processing in October. However, initial glitches with the update may have left some users without a properly implemented fix, Sophos said.

"The worry is that the problems with the patch may have prevented it from being successfully rolled out onto some vulnerable computers," Graham Cluley, senior technology consultant at the security company, said in a statement.

Cluley noted that computers running Windows 2000 and those that have not been updated with MS05-051 face the greatest risk.

Dasher.B is a network worm that has the potential to open a back door on computers with the MSDTC flaw, security experts said. The infected systems are then prompted to connect to a remote computer for instructions. Once connected, it downloads a malicious program that tracks keystrokes.

"This new worm aims (to) install software that tries to infect other vulnerable systems, and that also can be used to log keystrokes and turn the computer into a remotely controlled 'bot' system," James Rendell, a technical product manager at Internet Security Systems, said in a statement.

A third version of the worm emerged Friday, Dasher.C, which almost looks identical to Dasher.B, said Oliver Friedrichs, senior manager at Symantec's Security Response Center.

Three versions of Dasher--B, C and A, which emerged earlier this week--have infected at least 3,000 systems worldwide, Friedrichs said, noting the growth rate of the infection has since leveled off.

Security experts at Internet Security Systems expressed concern about the new worm and warned users to be vigilant.

The United Kingdom's computer emergency response team also issued an advisory Friday on Dasher.B, citing an update from the Australian CERT.

Reply by MB_AZ on 12/19/05 11:05am
Msg #83389

I downloaded a security patch last week from http://update.microsoft.com/microsoftupdate/v6/default.aspx?ln=en-us
was this suppose to cover the new dasher worm?

Reply by TitleGalCA on 12/19/05 10:27pm
Msg #83530

Thanks for that, Paul. I just recently updated my Windows 2000 via the automatic update Microsoft sends me (uh, at least I hope that update included protection against the worm).

As Windows 2000 is especially targeted by that worm, I've gone to Microsoft's site and updated it myself, this evening.


 
Find a Notary  Notary Supplies  Terms  Privacy Statement  Help/FAQ  About  Contact Us  Archive  NRI Insurance Services
 
Notary Rotary® is a trademark of Notary Rotary, Inc. Copyright © 2002-2013, Notary Rotary, Inc.  All rights reserved.
500 New York Ave, Des Moines, IA 50313.