Issues

Zotob Worm

Zotob Worm is running wild. Protect and fix your computer from the Zotob Worm.

A new internet worm called Zotob rages across the internet today. This internet worm is targeting large businesses that use Windows 2000 operating service. The worm does not damage any data but does copy itself on infected computers and then searches company networks for unprotected machines clogging the network. The virus has already affected major companies like ABC, CNN, The Associated Press, The New York Times, and Caterpiller inc.

We don’t suspect that this worm will cause any problems for most of you but you should be protected none the less. If your network isn’t working then you can’t read the Fotolia Blog and that is just wrong. So here are a few tips on how to protect yourself.


  • Update your virus software.
  • Install a firewall on your machine and network
  • Update your windows operating system.

While this worm seems to be limited to Windows 2000 we suggest taking precaution with all operating systems.
Click here to download a patch from Microsoft to protect your Windows 2000 machine from infection.

Zotob removal tools from Symantec click here.

Associated Press Article
SAN FRANCISCO - A computer worm unleashed over the weekend infected more computers on Tuesday that run Microsoft operating systems, with Windows 2000 users most seriously affected.

The Zotob worm and several variations of it, known as Rbot.cbq, SDBot.bzh and Zotob.d, infected computers at companies such as ABC, CNN, The Associated Press, The New York Times, and Caterpillar Inc.
The worm is causing the most problems at companies with large, networked computer systems, rather than among individual computer users, said David Perry, a security analyst at Trend Micro Inc., a computer security company.

Caterpillar worked Tuesday to clean up effects from the worm, which disrupted computer operations at several company plants and offices over the weekend, the Peoria Ill.-based heavy equipment maker said. The problem was controlled by Monday afternoon, company spokesman Rusty Dunn said.

A week ago, Microsoft Corp. released a "critical" patch for the vulnerability, which is most severe on Windows 2000 systems.
Those computers can be accessed remotely through the operating system's "Plug and Play" hardware detection feature. Protective patches, plus instructions for cleansing infected systems, are available on the company's Web site.

Perry said the worm copies itself and then searches networks for other unprotected machines, causing no damage to data but clogging networks and occasionally rebooting its host computer.

He called the worm's effects "small potatoes" in terms of the potential damage, and anticipated that corporate information technology staffs would quickly neutralize the worms. Additionally, Windows 2000 is more than five years old, and Microsoft has released several new versions of its operating system and security overhauls since then, further limiting the exposure.

"We did not see a widespread or fast spread of this in the first 24 hours," said Debby Fry Wilson, director of Microsoft's Security Response Center. "Over the last 24 hours, we've see variance, where other hackers will take the work and try to unleash a variant of the worm. So the worm continues to take on different forms."

Zotob and its variations can attack a computer without needing to open any software, so some users would be infected without knowing it.

Security company McAfee Inc. rated the worm a "high risk" threat, though rivals generally described the threat as moderate.
Companies that were slow to bolster their systems when Microsoft issued its security alert about the flaw may have left themselves vulnerable to the worm, said David Maynor, a security researcher with Atlanta-based Internet Security Systems Inc.

Maynor said some IT professionals who considered their networks safe because they run Windows XP or 2003 were mistaken. The worms need find only one unprotected computer running Windows 2000 within a network to "gain a foothold" in the system. Once inside, the worm unleashes a payload designed to infect other versions of Windows and this multifaceted approach spreads quickly, he said.

"Think of a typical worm as a knife with one sharp edge," Maynor said. "Think of this worm as a Swiss Army knife."

Windows Server 2003 and Windows XP systems with major security updates are less vulnerable, but still could be affected by certain remote users or those within local systems, the company said.

Technorati Tags : |

Steal This Computer Book 4.0: What They Won't Tell You about the Internet
$19.77
Buy it now!
Defense and Detection Strategies against Internet Worms
$72.98
Buy it now!
PC Pest Control: Protect Your Computers from Malicious Internet Invaders
$18.96
Buy it now!

Posted by chad on 02:25, August 17 2005

Issues Email to a friend Print Version

Comments

Post a comment

If you haven't left a comment here before, you may need to be pre-approved by Fotolia before your comment will appear on the entry. Thanks for waiting.

Remember me


Stock images - Stock photos - Royalty free images - Royalty free photos Fotolia US Imágenes de archivo - Imágenes libres de derechos - Fotos de archivo - Fotos libres de derechos Fotolia España Photos libres de droits - Images libres de droits - Ilustrations libres de droits Fotolia France Stock images - Stock photos - Royalty free images - Royalty free photos Fotolia UK Bildarchiv - Fotoagentur - royalty-freie Fotos - Stock Images Fotolia Deutchland
 Fotolia Italia  Fotolia Portugal  Fotolia Brasil