Welcome to MSFN

Register now to gain access to all of our features. Once registered and logged in, you will be able to contribute to this site by submitting your own content or replying to existing content. You'll be able to customize your profile, receive reputation points as a reward for submitting content, while also communicating with other members via your own private inbox, plus much more! This message will be removed once you have signed in.


Sign in to follow this  
Followers 0
allen2

Be Carefull with a new worm spreading around

6 posts in this topic

I wasn't infected nor seen any case of infection yet but everyone should be extra-careful as this new worm could spread using hole in rdp.

Here is the thread at MS Technet.

Description of this worm is there.

At this time most antivirus doesn't even detect it (so automatic removal isn't an option).

0

Share this post


Link to post
Share on other sites

Would it be wise to block RDP ports on systems that aren't configured to use it, at least until a common fix is available for this worm?

0

Share this post


Link to post
Share on other sites

Yes it would be very wise to filter at list from source ips and block when not needed.

Although MS say it use a dictionary attack on weak passwords, it seems it was able to spread on other system as well.

It seems almost every years (or so) a real bad worm spread in august (the only exception is conficker).

0

Share this post


Link to post
Share on other sites

I was reading about this on Sophos, but they seem to be saying there is more talk about this than actual reported infections. Although that may be related to most scanners' inability to detect it.

0

Share this post


Link to post
Share on other sites

Yes that might be true but anyway, being aware of such suspicious behavior might help avoid hours of diagnostic.

0

Share this post


Link to post
Share on other sites

I have a friend who got this recently

Edited by ricktendo64
0

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0

  • Recently Browsing   0 members

    No registered users viewing this page.