Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: security curmudgeon (jerichoattrition.org)
Date: Thu Jul 26 2001 - 13:15:32 CDT
> Although I agree on the funny part, I would suppose that M$ has patched
> up itīs own servers ..
Earlier today, two Microsoft Web sites fell victim to a new worm making
the rounds nicknamed the '.ida "Code Red" worm' because part of the worm
is designed to deface Web pages with the text "Hacked by Chinese" and also
because Code Red Mountain Dew was apparently the only thing that kept
employees from eEye Digital Security awake all last night to be able to
disassemble the worm in detail.
The worm propagates itself via Microsoft IIS Web servers through the .ida
buffer overflow attack published a few weeks ago. The worm then sets
itself up on the infected system and creates 99 other "threads" or
instances of the virus to spread the worm to other Web servers.
Full details of the worm can be found here:
The sites hit included the Windows Update Server
(www.windowsupdate.microsoft.com). According to the regular page:
Windows Update is the online extension of Windows that helps you get the
most out of your computer.