Network Security & Hardware - eWeek


Is the Smart Grid a Dumb Idea?
Surgical Adhesive Offers Smarter Way to Mend Bones
Get Smarter Technology on Your Mobile!
  Network Security & Hardware


MyDoom More Bad News for SCO



 By: Larry Seltzer
2004-01-27
Article Rating:starstarstarstarstar / 0


There are 0 user comments on this Network Security & Hardware story.


Rate This Article:
Poor Best
The Internet's new hit worm also performs a denial of service attack against The SCO Group's Web site.

The rapidly spreading MyDoom worm (a k a Novarg.A by Symantec Corp. and MiMail.R by Trend Micro Inc.) is poised to perform a denial of service (DOS) attack against The SCO Group Inc.s Web site (www.sco.com).

The new worm has many of the standard malware worm behaviors of recent attacks in addition to the DOS attack, and this is not the only recent DOS attack against SCOs Web site. As is shown by performance monitoring of access to the Web site by the British security analysis firm Netcraft Ltd., the recent performance problems at the site may or may not be related to the worm, and we had no trouble getting to the site. MyDoom also opens TCP ports in the range of 3127 to 3198 to create an open proxy server for remote access by attackers.

Read Steven J. Vaughan-Nichols column, "With Friends Like These, Linux Doesnt Need Enemies."

Symantecs analysis of the worm says it "can perform a Denial of Service against www.sco.com using a direct connection to port 80. Creates 64 threads which send GET requests. The DoS is active between February 1, 2004 and February 12, 2004." This indicates that the sporadic attacks so far are indicative of clock errors in some systems, and the real attack is set to begin Sunday.

Resource Library:

Unless a defense is in place by then, the attack could be significant. According to Ken Dunham, director of malicious code at iDefense Inc., "MyDoom is spreading at a very high rate, reminiscent of SoBig.F in August of 2003. MyDoom is going to be one of the more notable worms for all of 2004."

SCOs recent legal actions have made many enemies in the open-source community and other areas. The company has come under significant verbal attack, in addition to technical attacks such as this one.







  Reader Comments: MyDoom More Bad News for SCO
>>> Be the FIRST to comment on this article!
 

 
 
>>> More Network Security & Hardware Articles          >>> More By Larry Seltzer
 


x}ks㶲qUS޲5Ҕl3:-K3dwKEĘ"yHʏ͟/Oon|AI~$sO-`n4?{{o$rnaMȅMJ3[zTsA,ޛ7o}uO-CFSQ2D9w4&V#Q˧n mYy+AT1RM)5&SQh5fZ#+3uB=qnnbMbX:XC#: rWݸ#hFF\1Qh]m( )8ijMCIAmg|{Ped=g;1,cRR/FXP~$!ǎ4FS+CϚp_C[U+R7.$g4.O_FBK.nyhMӇc$$,ۢ"OUm_Mk| TvsK?&sܟb!b6jmO |lu՛Rx>N5U}önKǍ r,˪9hih9f rPSzZ)Nr7,ݾLÚ?8NNgnF_J%_((E*C|u7u m9yU- G0^w6 Oyq r,ȯɷDUE`rR)8y/ ONWP? uO.kQ2[-_ P/dZ]s (21,rr 򳹥s9\_]w2~8vΐ}1fWCP*]iȏwFժ}|qӽlnwMڝONY=w 'ɟk*=?!af;z dPK9LóZ|$3oN:d[WOλ$#MTۃ62pU3P[,w.3$bv'Z~@Xy|Y|؛93i)=-8oZujet8+YKS7|3_]#s a4F@LU&h)5?&FȚb.L2w2/(C .`qKTYP/- 5f>]V8{3Bqɝ`g/ӣA.r)i"`o8{ÈWXף(xj_t.Ófuٜ҅%]We>=-)]ۚ4:Nz~xHnvZM( 8ǹ:no:tm| 5Kz ^TJG:-dj`qX&aaJ]cun9s@ tة3Μ:>Qݘ#ղbOGs>H2AE62^,zK ,70}Hw@z!¤ p<{߫.v1s;A {>Щ}cF=)h$nh-D:IJ=@9 HhQ0\so0[3ˁ@c` Vz!PAXTum':(c6Gz:2L0sP |+sZ( 7^`@]JIQt"D% P h4Af'E|ENNmbo$?JH8_.ŭrP.o=!ԑtnOa\~(΍fr)ab -d[b|l eV&vZL< #n"0%X ,gZ Xk5ֲ f J >iܛ ̀%#Һ< S'-X㓶 &)# K8Y fkzn4 H6(yDla} /< qaH]7m)93,X0N mJB+H5L´Lh@,iojcӏ YqL9^\%nuKl f{aMv"Vn6Pz 4':SڦaȇroBoڅROU眺_dA_fMjlȔu>IVBg';oW f8$|ree* + xj~#JCUoxé=h{q#%NA{=e河POuXKnuooZB$l C`iXZ _.!d[}aa6%2D֑Rk aY^`(1 x E 7uSc > X?lyS)Ka Ja5sV@&@@7h/}* [0P&i^GgVuM?XĞ>:8[8s Z\Η']1!@0m`{<8dTfha86L:¿wUgڳ2RXO%}qO5 &^PGe d^3`M`Rc4t ZlFVG}Z20$]rɭ#™1j!| `DPǶ;r3UQabuްnQ7&w5wD=Hu [쑁 m{bRIBOR}'Xk5DU]m*O?CU^ocx,"jXU#jQjV8+0yϹoSO@PxՠC{<ޗ8᫏Cryw3ʹ7ZųѐPz;t~ gn&W#s㒏S+)c# ,c?` $̮fG`Ó R.)PS}}3](5f Rͯ|} d%h1 MlW6 O{[CSa+ʅ#81'?RDig%:!pwC)|ޒῪRwU#tT# voS(0fݦ-RxwI |O)B{cqe8@{Y L QP؇`m/yzT++sm7xE‡v1E Qa54 mf;;pLj6h)YS!RW dĞee[3Et kC鳨c'Q/#UIV:U;rUN9Tb5JiPx` fzli/$,Rd#kq g@Rf2U-U"m\X ZR~rMUE3qU­7.N3G~T>UKKIվi1RKb5_Vb<*rk 7xџYD+(++i-Z2˾~ m.E9[F 4˷ʨK3[,X.DД5Ϩx=Rb kQh-Bwyr `0W?#,i&q>r/FRVaf~`RuYQ^P ZQמE'sL؞E@( {ߏBuRģo{{kC4=5,L)n3>Ȕ8T) %jZԿۓN\}ĵ'J!_>$KYdI.Yr .矏!?節ٿn00ɇNA`~?H LӀïR嘔V-?}lK݋? eDdA$(XMp$wuq+~(!Wv{^;g F@ޅsѺ~߽_x{(^w/;Rޠw%y0WNp'Bjw_$'d0 szi]'6b `[&IEy=k쇤iҝa3+vC۝k,8;B3pq-=٠ihOٮ{+^z֭ Bf-bB!\Fgu (J]@ $X)XAU:_>G:Ky5P `b caHFrI'z\G>egiřπ/PENQ):*9Q_;Akѷo%F߀>O1Ok7tEdW(kp VbsZ;Dz燄Ndp jwyS>FIi%bfAZ$}\ 9%0 \("1O[bt#16%N){7l'iiQk)uyj :)O:6Op|N,O⼜zB,R&HV@]Я_tA^c!?ʕr{GNGGUm_f]zH' klqߋt2Ti\'sX62wѺB Тz$smCg#c6%,?kRg@tȂ)6mn ^]rjd9Gqx,3u\oPhvr,x\]S<,Eu{v1C=rsMZ@ ̯> I-Н> /ԍ>~6yO>4dwDm7:'9VzE4"&s Mu~oO)+eؽ¾"8 0z^l"4P$|+ln${r9/sᔤ˾d£ȄWN HFb;`@L6Of=K]wU햺f1vixÉ]gUTkd42]awB!]eeQJW=]ZDNqw5V {QI%*x}=.J`TTkyr^Av&0KY{+!bi8V=T郞:;t-c y‡i'Kxԥ9)}mnQ)]C2wDGn;R-SK=E CGMĐHVʲb~ q ,x1p]iٟO&CȂ )pg6`ybv26,:}"!Dnb%/HNi렳)&&9AuI{hOk `@E-r 6|$ub"P4%oQ{4dN~t gU#XcT0*];n/c;jX*󼝱G+v!oWݙ+J!P}eWH&@Hz"C7Z\ՋGrhS'MxEvc"2 NY^88~HG3xx9/cjL5| !@;1bc'&usIX^upax㴨*!;ʱ/FC.a9B0/;53hfCә(wWՒrTĶlDa8[s" tSDDŽ3Nؓl74.'`ʌiOjօ`_Imҕj+虅@ 8;] c#qx-$PD㿇$TI+n.0Ȯ-6 R|] K^;2{rcL;I}Su$볓 @ 6xg랇 5{]٢ m٢:m3I,@CPILYc sPHP݊C8`ICB,D$ ȯRH;[$)UPݖJ\(sװH4@sK-a[C |B"xT䟍57Tؕ'jߖ'ʯ9]wf;6TPCD:1C w9cJ 0}SцGEo^كw02!y\7eY}E:A1ez#=FAt8.̉h\ ~IPR1z ~-yUƮ7WSܖO(.` ʔ^c$d.(z'u_{nԥOd\ڢ u8r7/8lhsJ;ITÖ́p׸0š *]\͛͛͛͛_›/GfF*%ɩ(f""2m#2@S3`>C!u-0b'R]9$U -L|E`J9vM-mPoD~k&'L^j%^K1=m/$pż;jl~b:gw .-DU+20 'z$ǒ'}=\$ d4ꖜU|)bL9' 꺏RoK7vJ!{0C? LuM* 80GC0)Yes=c U/C2ϣHYoXb2K} B#pV>9tapXD"`{QY/L#UOzmKWǀ;Gעt岳I-ਭIk$zt=pcϚjl9/YǮi5@MhaxLbGH! %B }m_]aԒZMb;u~_;&ߔըoկo7w657Vy}ݪ/,:3NlP[6^F;-z&UzdV>>>˯lߥqMzn=QJR}{x0/B5qɶ~{h{M@OBO!@ /uG3i}ro^49|'=C{=ː;vp FFlopT-T3XH:_rD%R|w ǿx<[oji&_$|k3n{Tsh?!k4¶/2ul(M# ۀ-c ;0V#zUU)6,ҙ}G_F!Bw;Mx06&a' Ɨk^I2ƱHN!gL43+x( kJ7{] DrpDs_:=.y0k[YLg;(j#5/yg2^^:q(6XB̫2oe=-{8R[7o@/j ,&Fs!L\me}na%kg (NeDѡrX* xU~--=¨D_@10}#nDX}:MwW Hϰ_tAwԉ,S{;49\03`#\n*]WLa)cj+ZOaR͍ :' v2z(/3! <7*υ/w.Md'|GݪݞJGE 5⟎Fj6^o7 N o.qI|5ֱ  #xȮbI@mg7,G?P٦I]я:*r v U|@YmĔ+A#샒=%pٕO!,q)DεD5}VV';sx@rVPZ)fK5_V2c`89SƄO|+ ,TWಈz]xrCu[KQϭ =/ byGuG~:KdY^M>,x1'.`|\K>HP.F$0_G#aH G+}-D}jkɾ'8|ۜ`<( _awr>"o[I{u >Z`g'm:_a#i*Qwm[.'{=yB h>#Ժ3\B+{^m9%z.z{ǰ̎x,YqWcn5J ¨AJNaje'сH ^J1QiB9Ub=0-`DptY W1jrN[{㱡ŧQ-0<`& @>+pSCR46$Aeȅ5T?0KW]?{qBBMc[ȺexpGJ"NrGP e4x:& + ާ%wA>pw2/*aP> =xhx~sـjEld~E:tdH]$~NP#xc#k 3dw*K_0 8 rF@YbNG,e /`NNgV\vnsG@Fǣ=G}mXȝ2aHGO{t!'va]Q sQ#.>^|؛0߇rEAH3v L~w5:7?__#{~#:́ ,ZL0㊌F2*m&~I79t14aBx$ld D=fmDRTnc\15 K3lFN[NvB8PQ_j*{3wإ4ˑ?AΓ~Hm ('S3DqY@y+LL͂`A!>?~eԏM)Hbu~+K6X`,2E<CezY<:s~~2?: :Q3 F%g;ς o9:jTP g>򽉑z0us 33C´vpfT+mB<౸P, <'<*Ͷ W[zgjhBh),f,U< LꚂOJBveX 0˱#ʟz<YXF*_iL$R_ / H 3*%OУ.6#&Tn`9fwMZ!'ՠۻ$' ¶V |':'e{9o.|h5w;һdIߊ/΁SS_Sʯz}i 8Rރ^J9r`}yhB3Y }S?/4?tחwۙfRuSCL2s?R?/?)ak^"" >"@\@/RyŸ)2zOP)H)#/Ra|/S2E~.a.SƯR^~J+x*kE?)~J忬/1>Arߧ}}J ߤޤ  M :IJ"g+\8=r 3͓~)W@__yJ+%YJ賊)+f/_+Jsi3_?E+@~oenleڽ: aq+<7iKBjk Ǩju yW /"y%6(_ļY}摍J 4pk 7"[yBYQ{}tEq>ppi@Lw%<_[nNJ>Z9.~QBxdB$h{쫤WMFDԙcbHD1KAF0_Gz̉n~q)Ksҟe*oisbԟa=PW.vڸ)q3%>􋧎` }.nm;yp#ֽ2vb;w oCdxJ$Nǃf.ţu^*O ȄY-JKaġ$}oj#ni~mӏgw`t/[ë{hg"d~#>g~3fN,B8WEjoRx s%]SSWCtJ ۘs;Ķ'`P3 i3IRPWwR-W+w{5M =$"+5w93mPQʥ*D`Q9#Tx|Demګ.^qc<{+4аY-}op EХoHǗ1c {7/4n,_{_ۑ f@2b/`{fz50ۀ74z@Of™Z#{KY&3(W!Z7'hdգwh9ĉŰ(9P >W 5q23Mť{2\xgD˺U&=&XM ['lylXȋ$QwE/ɑz,C7`b9L#M^`)AЋK{I{۽3X`a\m8vGhK02MZ&d-0EspkS16y ` >^ \hkОx^i !HNL;e@请J`Xkt(JV7B'3Ffˉm3MJ]Xn*SP'ZWXXuZ8=[l"bלDu7LВ_O^!MvpmxX3!@.'%лx^L7X6? I=' MȮ+fAj|nXq!f&a~0!\X}T.nWi`_EFb+M{Vk*v8w i&a`[46wq+N瘽HaC4ݔ2jRgj[h} Iۜ f&}#K^U'z):IϐR5AGR ~)(~Ղ[#rF331#qyU p+K:;32U)ւ_./gwdĽ%խ}Ya v.~kipFJt\ڎ_TKxrHQ`C>~EE`AR]eD$ugs"xٳ?NA9DEPޙa&/;"wa3F)f'NFp)hN<}u=٢ uKğopm.;+Cm^p穎TU|A,>cx Lwܨ.1ue|nHKU֧f2{N{:57b0[|Uǜ9ˍt&_d%\!dW<lط3@WD0;"Ycf/KE&(Xp\'AΙImww:G-IDx kok3gz 3;<v7s#+_2ҳEnBVJrX}P7) ]'[Sܟ>Ba҇ /h_X (K# Ln)ZF1UVBTȟct! Va˟]챺WQٮ7G mݰ QaW*&n uTuu\7G]ecX#+ 7I;s__9V0|:,cz#ɾ1 ^f+>b[}u2^GB Ln2m^^kti( aaX8YܻLcڅGS96:|,݈bVS"Nd׊2q-9=O9N*DX6c?}f D@ͽō]^e*!R04?0`yjSa2$Y}k}\N3j}1&ѷ7x ' G?ql7/'~]b`i=y?Pe `j {D)X~`z8P25Ru^U]}dT=F@;?b4\|)?f'yӅ4D9sJ+ H0\57MFe18CT|P&h̎: $ŎcdmbH#Ò5 ɜccW07VtRGu4sX)*Ղ~0DxpDY(V 5W^+))~^tOxz}1TVSZ~=a0{_$6ryEE1JV jJ}ol@Dp(j԰0Z?!,\:v3^oƞ< *_ x_PŞŌv?{8=eag XC@+] V`EQ dIeC׽swy}qA`(.0طRr7@%j_K"mDŽx뛽ຠLo _GA+ !.h-:wcY5T9Xe4Od'c` DuChG&?,z岒 n]4.|`񄀿Ŀ|&ՄuDpGM1g:†0#a7kg#f Y-q/.DOP#@?Xp >[ɏ?9~@ ֟nT~B2`jjabf: .K u$3 tGk;+\"p3-KKͱ~$W{4Yf@:&s=a0ɲ[YqYa8Ƚǁ:wcapeqcSnژiC&y{9bVc|[k0!ȶmbV#zfcgjR+@HcAunߎ [ς؄労c 'rDwD΃h!|}p|0WGFUF*!t\A)L 8-K؋N:HʨJx -YYe?|A"0aȅo d|$R&"ܒB?~|{ yL[4P9,'3z쨭edzCqḓ;rP=| @'U7dbHޗFT{TqTQ"n! T3pe4KDZiShTsw #Ltjͬe9Mf KX2M氰Wve' .hpUǓ{/RPD}E+۝$!v wjtP3oe~s<jHh< *]%p J&B"N7 e Z^[)ܦ]Xa>̬N"]͆[l?GWXh/x 堇?