Posted on 02/08/2007 3:12:05 AM PST by TigerLikesRooster
Over 1,000 sites, 92,000 PC's infected
KISA, "Install MS security patches"
Yonhap News
2007.02.08 16:57
Largest Trojan horse attacks in history, originated in China, occurred, which are designed to take over personal accounts at Internet game sites.
Korea Information Security Agency (KISA) announced on Feb. 8 that they detected malware such as Trojan horses infected about 1,000 sites inside and outside S. Korea and shut them down.
A source at KISA said, "We detected that, from late last year to mid-January this year, Trojan horses originating in China were spreading on a large scale via server(s) at an Internet Data Center (IDC,) and shut down the server(s.)"
This incident affected 1,000 routing sites, and the largest in history as a single site dissemination episode.
There were 6,617 incidents of KISA shutting down routing sites for such malware.
The malware in question installs Trojan horses if a user visits the home page of the site and he did not install security patch at his PC. It then transmits overseas user ID and password for Han Game and Maple Story, on-line computer games.
The routing sites involved included many (Internet) game sites. About 620,000 PC's experienced attempted attacks, and about 92,000 sites, 15% of them, were (actually) infected.
/snip
Ping!
Largest Trojan horse attacks in history, originated originating in China
ping
Microsoft makes good systems for home workstations and small networks. Windows is the standard for such use. But if you would like to have a much more secure, free operating system for servers, or are very technically inclined and want to use it for your workstation,...
http://www.netbsd.org/
http://netbsd.org/
A similar system (based on BSD: Berkeley Systems) that is easier to install but often not quite as security-hardened (as NetBSD and OpenBSD kernels are more independent, process-wise, from user software, and have more thoroughly checked kernel code):
http://www.freebsd.org/
...other variants.
http://www.bsd.org/
I had to move two of my sites to different hosts. I noticed it, allright.
Totally agreed. The outfit where I work as Sys Admin has run NetBSD on its servers for a decade (since Linux was but a toy), and I like its robustness. I've got 3.1 running in a VM at home (on my Linux FC4 box) and use it when I need something lean, mean, and rock-solid.
There's nothing like a good BSD for security and strength.
*********************************
EnGarde Secure Linux is a server-oriented open source operating system that provides services like web, DNS and email simply and securely while eliminating the need for time-consuming "hardening" by the user. EnGarde offers integrated intrusion detection, advanced kernel and network security features, and graphical auditing and reporting - all controlled through Guardian Digital WebTool, a simplified browser-based management system.
Server security is a matter of trust and maintenance. There are some functions where you can trust a commercial brand manufacturer (e.g. Cisco), but you still have to keep current with patches and upgrades. Other functions where you can trust the open source community, but you still have to keep current with patches and upgrades. Then there are the functions you concoct yourself, which you have to maintain yourself.
I don't have an opinion on the EnGarde system because I don't have experience with it; anybody can read a writeup on the product and form their own opinion. It does sound handy, so long as the graphical browser-based tools are themselves robust and secure.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.