Sasser worm spreads rapidly across internet

By

The Sasser worm was infecting thousands of systems by exploiting a recently announced Microsoft flaw, security experts said Monday.

Researchers at Internet Security Systems estimated 500,000 to one million Sasser infections.


Sasser exploits the Microsoft Local Security Authority Subsystem Service (LSASS) vulnerability, which Microsoft announced and issued a patch for last month.

The worm spreads by scanning randomly chosen IP addresses on unpatched Microsoft systems, according to Symantec. The vendor upgraded a second version of the worm, Sasser.B, to a Category 4 threat, meaning a severe threat.

Sasser affects Windows XP and Windows 2000 systems. A patch for the vulnerability the worm exploits can be downloaded from Microsoft's web site at www.microsoft.com

 

 

 

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:

Most Read Articles

First npm worm "Shai-Hulud" released in supply chain attack

First npm worm "Shai-Hulud" released in supply chain attack

"VoidProxy" PhishKit targets Google and Microsoft users

"VoidProxy" PhishKit targets Google and Microsoft users

Apple adds "mercenary spyware" protection to new A19 chip

Apple adds "mercenary spyware" protection to new A19 chip

Phishing attack nets enormous npm supply chain compromise

Phishing attack nets enormous npm supply chain compromise

Log In

  |  Forgot your password?