X
Tech
Home Tech Security

Worm surge exploits Microsoft vulnerability

A surge in worm activity for a patched Microsoft flaw means IT professionals need to apply the update, says F-Secure
Written by Colin Barker, Contributor

Business systems are being attacked by a worm exploiting a known Microsoft vulnerability, IT security experts have warned.

Both US-CERT and security organisation F-Secure have issued warnings, urging IT professionals to apply the Microsoft patch.

The malware attacks the vulnerability outlined in MS08-067, a Windows Server service flaw that was patched in October. The worm launches a dictionary attack to attempt to crack user passwords, and uses server-side polymorphism and modification to the Access Control Lists (ACL) "to make network disinfection particularly difficult", F-Secure said in a blog post.

A sign of infection is that user accounts get locked out of the Active Directory domain as the worm tries to crack passwords, said F-Secure.

A removal tool is available at the F-Secure website, as is a detailed description of the malware F-Secure calls Downadup.AL.

Editorial standards
Show Comments

Related

Linux Mint 10

I've tried a zillion desktop distros - it doesn't get any better than Linux Mint 22

Samsung Galaxy Z Flip 6 inner display next to Android figurine.

One of the best foldable phones I've tested is not from OnePlus or Motorola

TCL Tab 10 Nxtpaper 5G

One of the best budget Android tablets I've tested is not made by Samsung or Google