On CBS.com: Prank Friends With Barney's HIMYM App
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 7 of 42:
Next »
« Previous
Quite simple
Bagle, MyDoom and Sober all scan ports 1025, 2745, 3127, 6129 and several other ports looking for a machine that has lax security (ie. no firewall, week passwords, uneducated user). They will scan these ports several times and then sometimes attack with a Sokets de Trois v1. Trojan horse on port 5000. Unless Grandma has a firewall in place, updated and working to alert her she will never know these viruses on other computers are port scanning her computer and looking for a way to infect. While they do require social engineering to trick the user to open the file and execute the attachment, those who computers are already infected are scanning the internet looking for other computers to infect. This is one way how Granny gets her computer to unwillingly become a spam zombie and she doesnt know it.

I recently reported several IP's in the 68 IP range that where doing exactly what I've just described above. ISP's are taking the correct actions and this should get home users off thier duffs and learn how to secure thier machines with firewall and AV programs.

Kudo's to the ISP's for doing the right thing!!

One problem...WHAT TOOK SO DAMN LONG?!?!?!
Posted by: DragonBRockin   Posted on: 03/17/04 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Its about time!  Tammee | 03/17/04
Capability?  Update victim | 04/26/06
Yet another reason not to use Windows  ITGuy04 | 03/17/04
But Windows can be safe  Taz_z | 03/17/04
Re: But Windows can be safe  issthatso | 03/17/04
You are right for NSA level security,  Taz_z | 03/17/04
Quite simple  DragonBRockin | 03/17/04
I said "Given what I said in my previous post"  Taz_z | 03/18/04
Home users don't need C2 security  jfrankcarr | 03/17/04
Then why did I fix an infected machine on Monday?  ITGuy04 | 03/18/04
Read my post just a little more carefully  Taz_z | 03/18/04
auto update every week?????  PA-ITGuy | 03/18/04
Tell them to stop installing and running Kazza  jfrankcarr | 03/18/04
What do you mean...  vferrara | 03/17/04
start playing the B side!!  nite_w0lf | 03/17/04
It's not the system     | 03/18/04
Server Side Virus Scanning would help  jfp | 03/17/04
While I agree, in principle...  vferrara | 03/17/04
agreed  PA-ITGuy | 03/17/04
Funny no one suggested  Chad_z | 03/17/04
It's not that easy when setup right  jfrankcarr | 03/17/04
Busted users, NOT busted software. Try thinking next time.     | 03/18/04
It's not just the 'inbox attachments'  jfrankcarr | 03/18/04
Thank you Cable Modem ISPs  issthatso | 03/17/04
I totally AGREE  DragonBRockin | 03/17/04
AV Software  voska | 03/18/04
Stay away from BlackICE Defender  DragonBRockin | 03/19/04
ISP and virusmails  benopdezolder | 03/17/04
If you read above, pls read this  Sackaguano | 04/08/04
yes!  ryusen | 03/17/04
The Dirty Secret  jfrankcarr | 03/17/04
too secure  JWatson77 | 03/17/04
If my ISP...  BitTwiddler | 03/17/04
Trespassing!  bjbrock | 03/17/04
The only thing that will wise up users  nite_w0lf | 03/17/04
Finally, maybe this will get the public's attention  copperhead9901@... | 03/18/04
Windows can be secure  Louisiana oilman | 03/18/04
Re: Windows can be secure  bchesmer | 03/18/04
Help! anyone know where this one came from???  bchesmer | 03/18/04
Charge Microsoft Users Higher Rates  brenthawkinsmd | 03/18/04
Get Real!  DragonBRockin | 03/19/04
Fix the problem, not the symptom  ghastly | 04/27/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline