Zotob worm starts onslaught

Posted on Monday, August 15 2005 @ 23:05 CEST by Thomas De Maesschalck
Last week Microsoft patches a critical vulnerability and since yesterday the Zotob virus which takes advantage of this exploit appeared on the Web. This worm enables hackers to remotely controle ones computer but according to Microsoft only Windows 2000 users who haven't installed last week's patch yet are vulnerable.

"It only affected Windows 2000," said Stephen Toulouse, a manager at Microsoft's Security Response Center. "So far its has shown a very limited impact -- we're not seeing any widespread impact to the Internet, but we remain vigilant."

The Zotob worm installs itself into the Windows system folder as botzor.exe and alters the system's host file to prevent the user from accessing anti-virus websites. Additionally, the worm also connects to an IRC server, enabling malicious users to remotely control infected systems. More details at Reuters

About the Author

Thomas De Maesschalck

Thomas has been messing with computer since early childhood and firmly believes the Internet is the best thing since sliced bread. Enjoys playing with new tech, is fascinated by science, and passionate about financial markets. When not behind a computer, he can be found with running shoes on or lifting heavy weights in the weight room.

Loading Comments