Topic: - on January 27, 2003 at 3:13:42 PM CET
ATMs, ISPs hit by Slammer worm spread
The bandwidth-crunching Slammer worm caused all manner of damage since its appearance on the Net in the early hours of Saturday morning.
On Saturday, the spread of the worm was so severe that the majority of Bank of America's 13,000 automatic teller machines "were unable to process customer transactions", the Washington Post reports. The paper quotes the bank saying it was able to restore services on Saturday evening but a Seattle-based Reg reader tells us he was "unable to make a deposit to my Bank of America Account on Sunday at about noon Pacific time".
... Link (0 comments) ... Comment
Topic: - on January 27, 2003 at 2:36:26 PM CET
Web Worm Could Strike Again Today
Experts warned that the virus-like infection which disrupted the Internet this weekend may resume its attacks Monday.
The fast-spreading computer code dramatically slowed Internet traffic, overwhelming the world's digital pipelines and interfering with Web browsing and e-mail delivery.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 4:41:55 PM CET
BugTraq
We started to get flooded at 03:00 AM (now its 09:20 am down here), and found the solution about 30 min after: shutting down all W2K SQLs. Now we have all 1434 and 1433 blocked. 1433 seems to be important too.
Please check this:
We had troubble downloading the patch.. too busy. I got it now, and made a mirror. Please feel free to get it and patch your SQL 2k.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 1:49:24 PM CET
This graph shows the Global Packet Loss for the past 24 hour
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 1:43:50 PM CET
Großangriff legte Teile des Internets lahm
Heute vormittag ist das Internet weltweit durch eine Online-Attacke in die Knie gegangen.
Grund war eine Sicherheitslücke im Microsoft SQL-Server, einer verbreiteten Datenbanksoftware. Ähnlich der Verbreitung des Wurms "Code Red" geschah die Attacke in kürzester Zeit und betraf Server weltweit.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 1:36:35 PM CET
Internet traffic hit by electronic attack
Traffic on many parts of the Internet slowed dramatically early Saturday, the apparent effects of a fast-spreading, virus-like infection overwhelming the world's digital pipelines and interfering with Web browsing and delivery of e-mail.
Sites monitoring the health of the Internet reported significant slowdowns globally. Experts said the latest electronic attack bore remarkable similarities to "Code Red" virus during the summer of 2001 which also ground traffic to a halt on much of the Internet.
¬> cnn ¬> smh ¬> abc ¬> Google NEWS related articles
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 12:55:31 PM CET
Running a ms-sql-server? Switch it off NOW!
I'm getting massive packet loss to various points on the globe. I am seeing a lot of these in my tcpdump output on each host.
02:06:31.017088 150.140.142.17.3047 > 24.193.37.212.ms-sql-m: udp 376 02:06:31.017244 24.193.37.212 > 150.140.142.17: icmp: 24.193.37.212 udp port ms-sql-m unreachable [tos 0xc0
It looks like there's a worm affecting MS SQL Server which is pingflooding addresses at some random sequence.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 12:44:23 PM CET
Internet fall down
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 12:40:45 PM CET
DOS attacks world wide
2003-Jan-25... current status: green New MSSQL Worm scanning and causing some slowdowns. Block port 1434 UDP at perimeter if at all possible.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 12:31:49 PM CET
MASSIVE DDOS ATTACKS ALL OVER U.S.
We are monitoring massive Distributed Denial of Service attacks all over the U.S. tonight starting at around 11:30 PM CST. As many as 5 of the 13 root nameserver have been down, up to 10 with massive packet loss.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 11:36:44 AM CET
DoD offering admin privileges on .mil Web sites
Care to register a .mil Web site of your own for free? The DoD has gone out of its way to make it a snap. An unbelievably badly-protected admin interface welcomes you to register whatever domain you please (Rotten.mil anyone?), or edit anything they've already got. The interface is so ludicrously unprotected that it's been cached by Google and fails to mention that you must be authorized to muck about with it. Incredibly, default passwords are cheerfully provided on the page.
... Link (0 comments) ... Comment
Topic: - on January 25, 2003 at 11:12:06 AM CET
Lösegeld für Websites gefordert?
Wer nicht sofort bezahlt, dem werde die Website des Hotels gelöscht: Briefe mit solchen Forderungen verschickt eine dubiose Firma an Tourismus-Betriebe. Niemand solle solchen Schreiben auf den Leim gehen, warnt ein Salzburger Experte.
... Link (0 comments) ... Comment
