p2pnet.net News:- If you’re worried your system is about to be ravaged by the W32/Sasser-A, W32/Sasser-B, and W32/Sasser-D worms which are now burrowing their way through the Net, you may have good reason.

Sasser is a self-executing network worm. Unfortunately, though, this doesn’t mean it’s suicidal. Rather, it means you don’t have to do anything to set it off and unlike most of the other deadly e-bugs that have been appearing lately, it doesn’t need email to spread.

Instead, it moves around online thanks to the gaping Microsoft Windows vulnerability MS04-011.

Microsoft has a web site here with all the do’s and don’ts, but the brutal, bottom line reality is:

If you’re Microsoft Windows XP or Windows 2000 user and you haven’t kept on top of all of the Microsoft Windows ’security’ fixes and patches Bill and the Boyz seem to issue every 10 minutes of so, Sasser is going to get you.

It spreads to Windows PCs automatically, even if no-one’s using the PC at the time, and once a machine is infected, the e-worm moves on to other computers and as a side effect, users might see error messages and experience repeated reboots.

If you’re running W2k or XP and haven’t updated Windows recently, DON’T GO ONLINE WITHOUT A FIREWALL of some kind.

If you’ve been burrowed, patch the LSASS hole first, then remove the worm – otherwise the worm could reinfect you immediately.

A free tool to remove the Sasser.A and Sasser.B worms is available here.

Go here for more info from Microsoft.

Either that, or buy a Mac ; ).

This entry was posted on Wednesday, May 5th, 2004 at 9:01 pm and is filed under Uncategorized. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

HOME

Viewed 1916 times