Merit Network
Can't find what you're looking for? Search the Mail Archives.
  About Merit   Services   Network   Resources & Support   Network Research   News   Events   Home

Discussion Communities: Merit Network Email List Archives

North American Network Operators Group

Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical

Blackworm hunbers [Was: Re: Martin Hannigan]

  • From: Fergie
  • Date: Wed Jan 25 17:35:03 2006

Well, let's hope we can watch the Super Bowl in peace -- I'm
turning my pager & cell phone off anyways. :-)

In any event, as Alex Eckelberry writes over on the Sunbelt
Software blog, "...we’re now seeing infestations for the
Blackworm worm (aka KamaSutra) getting close to 2 million.

"Yesterday it was at close to 700k. 

"Of course, it’s possible that this URL has gotten out to
the public, which would increase the count (simply hitting
the website increments the count by one).  However, to my
knowledge, this URL is only known in the security community.

"Remember that this worm has a very destructive payload. Even
if you discount the number here, you’re still looking at a
significant number of people who will suffer potentially
devastating data loss."

I couldn't agree more.


- ferg


-- Martin Hannigan <> wrote:

> Further, our reports lead to a SANS ISC temporary URL's for each AS.

The last time SANS felt something was so serious they needed all
of NANOG to dance, they came out and said so. That's their handlers
diary. I read it. A lot of people read it. It's well balanced and 
usually on target. Just like that. It's not alarmist. It seems 
fairly certain that as long as Symantec et. al. do their thing, we
will be able to watch the superbowl in peace.


"Fergie", a.k.a. Paul Ferguson
 Engineering Architecture for the Internet or
 ferg's tech blog:

Discussion Communities

About Merit | Services | Network | Resources & Support | Network Research
News | Events | Contact | Site Map | Merit Network Home

Merit Network, Inc.