<...> Internet virus spreading rapidly Computers using Microsoft vulnerable By JASON GERTZEN [EMAIL PROTECTED] Last Updated: Aug. 11, 2003
A fast-spreading Internet attack dubbed the "LovSan" virus crashed computers running Microsoft software Monday, and technology experts warned of future problems for those failing to fix known flaws in the company's code.
"This is the first in a slew of a lot of worms that will be coming out," said E. Kelly Hansen, chief executive officer of Neohapsis, a computer security consultant with offices in Milwaukee and Chicago.
U.S. government officials and technology industry experts had issued urgent warnings last month as the problem emerged. The virus causes computers to mysteriously shut down and then restart. The virus also threatened to launch an electronic attack against Microsoft Corp.
Security experts said the infection, which exploits an unusually dangerous flaw in Windows software, wasn't yet seriously disrupting Internet traffic but posed that risk as it was expected to spread overnight.
Researchers discovered it about 3 p.m. Eastern time, and they reported tens of thousands of infected computers inside universities, businesses and homes.
"It seems to be taking off fairly quickly," said Johannes Ullrich of Boston, who runs the DShield network of computer monitors.
The impact in the Milwaukee area appeared to be limited late Monday.
GE Medical Systems, Rockwell Automation, Fiserv Inc., Metavante Corp. and the University of Wisconsin System all said they were not experiencing problems related to the virus.
The virus affected Journal Sentinel computers with the Windows XP operating system Monday afternoon until a recommended patch of computer code was installed.
The UW System installed that patch at least a couple weeks ago for the UW System, said Erik Christianson, a spokesman for the system.
"I don't think it is going to be a problem," Christianson said. "We are patched for it."
Other companies in the region were not so fortunate, though Hansen declined to name any of the clients her company was working with late Monday.
"So many systems are unpatched and vulnerable to this," Hansen said.
Corporate computer systems have been expanding rapidly, making it difficult for information technology specialists to keep track of all the servers and other computers in need of updates. In addition, Hansen said, installing patches is not always an easy task.
"Sometimes the patches themselves can cause problems," Hansen said.
The good news about Monday's incident, Hansen said, is that the virus did not appear to cause many catastrophic problems.
Infected computers were programmed to automatically launch an attack on a Web site operated by Microsoft on Saturday. The site, windowsupdate.microsoft.com, is used to deliver repairing software patches to Microsoft customers to prevent against these types of infections.
Microsoft offers a free patch on the Web site to protect Windows users.
The infection was quickly dubbed "LovSan" because of a note left behind on vulnerable computers: "I just want to say LOVE YOU SAN!" Researchers also discovered another message hidden inside the infection that appeared to taunt Microsoft Chairman Bill Gates: "billy gates why do you make this possible? Stop making money and fix your software!"
Government and industry experts have anticipated such an outbreak since July 16, when Microsoft acknowledged that the flaw affected nearly all versions of its flagship Windows operating system software.
<...>
Article: http://www.jsonline.com/bym/tech/news/aug03/161588.asp
More Info: http://www.europe.f-secure.com/v-descs/msblast.shtml
Rick
______________________________________________________ RollTideFan - The University of Alabama Athletics Discussion List
"Welcome to RollTideFan! Wear a cup!"
To join or leave the list or to make changes to your subscription visit http://listinfo.rolltidefan.net
