Microsoft working with the feds; Virus attacks may be terrorism

WORLD TRIBUNE ^ | 8/21/03 | World Tribune Staff Writer

[Pro-Bush]

Microsoft working with the feds; Virus attacks may be terrorism

Evidence gathered by Microsoft, the FBI, and the Secret Service on the worldwide attacks made against computers running the Windows operating system fits the profile of "terrorist activity."

Industry sources citing Microsoft officials told World Tribune.com that recent attacks against from the "Blaster" worm and its variants, coupled with an email virus called "SoBig-F" show signs of a coordinated attack by an entity wanting to disrupt world commerce. Microsoft is cooperating with both the FBI and the Secret Service and will report their findings in the next few days.

While at present no terrorist organizations have claimed responsibility for these attacks in cyberspace, Microsoft is an obvious target for terrorists as the largest, most recognizable, and most profitable software company in the world.

The Blaster worm exploits a flaw in the Remote Procedure Call (RPC) component used by Microsoft Windows, the operating system installed on an estimated 90 percent of all home and corporate desktop computers worldwide.

A patch was made available free of charge by Microsoft in July 2003, but few home or corporate users downloaded the fix. The Blaster worm seeks out any Internet-enabled Windows computer without the fix, installs malicious code that takes control of the computer, and beings attacking a Microsoft corporate Web site used to distribute software fixes to Windows users. SoBig-F is a rehash of a virus first spread by hackers in January 2003. The "F" strain clogs e-mail systems full of messages with subjects like "Re: Details" and "Re: Wicked screensaver," and then installs a "Trojan horse" program that is used to spit out thousands of copies of the virus from the victims' computers.

Microsoft officials said the company is working proactively to halt the spread of the Blaster and SoBig attacks by encouraging Windows users to regularly update their computers using the free Windows Update feature in Windows 2000, XP, and Server 2003.

Late Wednesday afternoon, Microsoft posted two "critical updates" to Windows Update that fixed flaws in their Internet Explorer Web browser and a collection of common Windows operating system components that would "allow an attacker to compromise a Microsoft Windows-based system and then take a variety of actions, including executing code." Sources inside Microsoft say that up to three more of these critical updates will be released in the next few days to coincide with the Blaster and SoBig-F investigation.

[aruanan]

Microsoft is constantly updating their software. Sure, they enjoy being hacked..Get a clue.

Tu quoque. Who said anything about their enjoying being hacked? Of course they're constantly updating their software--replacing one hole with another as fast as they can.

Remember, these worms and viruses are able to do what they do because of weaknesses inherent in the software (remember their problems with security in MS software for financial transactions?). Sure, they're "updating" their software, but in the manner of a door manufacturer saying, "Oh, we just discovered that although our reinforced front door cannot be pulled out of the frame and is really secure against such attacks, the panels in it can be slid aside, allowing unauthorized entry to the home. Be sure to call us to get someone to come by to fix it for you."

[FLCowboy,]

I work in IT and I love the absolute ignorance of these comments. If Linux was on top, the virus/worm activity would be directed at them. This is the typical "success should be punished" mentality that the Democrats display.

You are so right. What would the significance of a worm be on a MacIntosh?

[milan]

"Oh, we just discovered that although our reinforced front door cannot be pulled out of the frame and is really secure against such attacks, the panels in it can be slid aside, allowing unauthorized entry to the home. Be sure to call us to get someone to come by to fix it for you."

Actually, this is one of the dumbest thing I have ever read. Let's try this; "Oh, we just discovered that several carpeneters spend their lives trying to find flaws in our products because their doors aren't selling as well. They have discovered that if you try hard enough you can pick the lock and open the door. Not just our door, but they have it out for us. So, here is a better lock, but beware, the carpeneters aren't happy unless we look bad, so they will eventually find another hole."

Fort Knox in able to be penetrated if you know what you are doing.

[rdb3]

I work in IT and I love the absolute ignorance of these comments. If Linux was on top, the virus/worm activity would be directed at them.

IF "if" and "buts" were candy and nuts, we'd all have a Merry Christmas. You can prove/disprove anything with an "if." Therefore, it's unfalsifiable, i.e., shibboleth.

This is the typical "success should be punished" mentality that the Democrats display.

Barbra Streisand. Carry on.

[milan]

What would the significance of a worm be on a MacIntosh?

Actually, if this happened, a bunch of Birkenstock wearing dorks would blame that on Microsoft too!

;)

[milan]

Okay, let me rephrase: I work in IT and I love the absolute ignorance of these comments. Linux is not on top for a reason.

IF "if" and "buts" were candy and nuts, we'd all have a Merry Christmas.

Cute. You would make one hell of a debate coach.

shibboleth

Please don't make me look up any more words.

[milan]

Wow!!! I love your website. Seriously...I am speechless from the content.

I was in the 24th mech. during the gulf.

[milan]

You can prove/disprove anything with an "if."

Most hypothesis are based on "if"

[glorgau]

RFC 1521...

But blindly execute Visual Basic scripts that wipe your hard drive? I know they pop up those confusing dialog boxes, but honestly, who can understand that? Requiring a user to know all the consequences of seemingly innocuous actions is asking too much.

Show me the documentation.

That's just it, it's not documented! The "documentation" was public demonstrations of the breakage. Am I gonna go look that stuff up now? Nope.

Have you ever run a kernel debugger on Windows to see where the faults actually occur?

Yes

moron think-they-know-it-all" types

Thanks! I've finally arrived. :-)

[RWG]

By the time you finish going through their monthly changes you have spent just as much as if you bought XP!!! well xp without crashes or freezes and elements of the OS that allow you to do great work without buying more applications like iPhoto, iTunes, iMovie and if you look for shareware you can find really neat applications for every purpose and most to all of them are around $10 to $20.

With 10.2 you could buy a family license for $129, that's 5 stations. If you have 5 computers in your house can you use 1 copy of XP for all of them?

[RWG]

Had an iMac for 3 years before I got the eMac. It had the cd-rw. Nothing ever had to be replaced. I still have the clamshell iBook graphite se with the dvd-r, so far so good and we are starting our 4th year. Just got the iBook basic package, all the hardware is under warranty for a full year and for about $80/yr for 2 years I can get an extended warranty on the hardware.

I am not sure about ebay and the way sellers offer their items, but it appears and hopefully that's for real, macintosh products keep their value when offered for sale there.