OSEC

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com
 
From: X-Force (xforce_at_iss.net)
Date: Thu Dec 26 2002 - 14:33:55 CST

  • Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

    -----BEGIN PGP SIGNED MESSAGE-----

    Internet Security Systems Security Brief
    December 26, 2002

    Dynamic Trojan Horse Network Hybrid Threat Propagation

    Synopsis:

    ISS X-Force has been monitoring the spread of the Dynamic Trojan Horse
    Network (DTHN) Internet worm. DTHN propagates through email and
    through open NetBIOS file shares. DTHN installs itself and establishes
    communication to a sophisticated peer-to-peer communications network,
    to further spread infections and launch additional attacks.

    Impact:

    As with most network worms, DTHN propagation can cause network
    congestion, automatically compromise victim systems, and configure a
    sophisticated network that can be used for Distributed Denial of
    Service (DDOS). Once the backdoor is installed, it can be accessed
    by the author, or third party attackers.

    For the complete ISS X-Force Security Alert, please visit:

    http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21693

    ______

    About Internet Security Systems (ISS) Founded in 1994, Internet Security
    Systems (ISS) (NASDAQ: ISSX) is a pioneer and world leader in software
    and services that protect critical online resources from an ever-
    changing spectrum of threats and misuse. Internet Security Systems is
    headquartered in Atlanta, GA, with additional operations throughout the
    Americas, Asia, Australia, Europe and the Middle East.

    Copyright (c) 2002 Internet Security Systems, Inc. All rights reserved
    worldwide.

    Permission is hereby granted for the electronic redistribution of this
    document. It is not to be edited or altered in any way without the
    express written consent of the Internet Security Systems X-Force. If you
    wish to reprint the whole or any part of this document in any other
    medium excluding electronic media, please email xforceiss.net for
    permission.

    Disclaimer: The information within this paper may change without notice.
    Use of this information constitutes acceptance for use in an AS IS
    condition. There are NO warranties, implied or otherwise, with regard to
    this information or its use. Any use of this information is at the
    user's risk. In no event shall the author/distributor (Internet Security
    Systems X-Force) be held liable for any damages whatsoever arising out
    of or in connection with the use or spread of this information.

    X-Force PGP Key available on MIT's PGP key server and PGP.com's key
    server, as well as at <http://www.iss.net/security_center/sensitive.php>
    Please send suggestions, updates, and comments to: X-Force
    xforceiss.net of Internet Security Systems, Inc.

    -----BEGIN PGP SIGNATURE-----
    Version: 2.6.2

    iQCVAwUBPgtmkDRfJiV99eG9AQHvOwP/ZOvjpUQSJdXp203gvE2+rj085a5r027X
    ZawzBMxb+sqtxz0aW1Kx3b9mSyiop/gmERDPNoVqHf+YOyytSNxhBHAboA8pTbig
    h1rG2ODEXxDUueQ44W/iiu6BhlmSPVWU/jDXdtFphwExcTp4onj85A3VNdMbXa0R
    rkcVS+h2/QI=
    =JyQh
    -----END PGP SIGNATURE-----