All the latest UK technology news, reviews and analysis

Slapper worm spreads its disease

by James Middleton

18 Sep 2002

Be the first to comment

  • Tweet this

The Internet Storm Centre (ISC), the early warning system from the Sans Institute, is on yellow alert for the first time in months as the Slapper worm continues its infection of Apache web servers.

The worm was first spotted in the wild at the end of last week, entering systems by exploiting a vulnerability in the open Secure Socket Layer (SSL) library used in SSL-capable programs.

Further reading

Any systems running Apache and its associated SSL module are likely to be affected on both Intel and Sparc platforms.

The Slapper worm already features in the top five most prevalent attacks around the world, notching up almost as much activity as the most common attacks - those on port 80 - in almost every continent. The worm attacks on port 2002 and connects the target machine to the rest of the infected network by the User Datagram Protocol (UDP). This army of 'zombie' machines can then be used by the hackers as a tool to attack other servers.

Slapper-infected servers have already been linked to denial of service (DoS) attacks against other machines.

It is thought that some script kiddies found the source code for a concept attack known as peer-to-peer UDP Distributed DoS (PUD) on a security site and turned it into a working worm.

The ISC has confirmed that around 6,000 servers are currently infected. But speculation on the BugTraq security mailing list suggests that numbers may be as high as 30,000.

A patch has already been released by the OpenSSL crew, with details available here.

Do you agree?

Add your comment
 

Add your comment

We won't publish your address
By submitting a comment you agree to abide by our Terms & Conditions. Your comment will be moderated before publication.
Submit your comment

Latest stories from Security

german flag

Germany backs away from ACTA

Related white papers

Related articles

Related jobs

Today's top stories

heartvalentinesday

Top 10 Valentine's Day technology matches made in heaven

Microsoft Windows 8 start screen

Microsoft talks up Windows 8 for ARM hardware

Security enhancements will be added with the Chrome 17 update

Chrome for Android hands on review

Poll

IT priorities for 2012

What is the most important IT priority for your company this year?

99%

0%

1%

0%

0%

Features

V3 and The INQUIRER editor Madeline Bennett

BBC and Sky News show tough love with Twitter policies

V3's Rosalie Marshall

World indulges in a Facebook facts fest as firm prepares to float

facebook-new

Top five most interesting figures from Facebook’s IPO

Khidr headshot

Intel will prove Steve Jobs wrong in the mobile market

More features

Connect with V3.co.uk

Sign up to our daily or weekly newsletters

Case studies and reports

Accurev

Top 5 software development challenges

This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes

Talend

Rubbish in, rubbish enterprise

Why good data management at all levels is essential in the modern business (video, 6mins)

Technology jobs

SOFTWARE ENGINEER - UNIX C JAVA ORACLE

SOFTWARE ENGINEER - BERKS - to £34k plus package WAREHOUSE...

Senior Project Manager

We currently have a position for a Senior Project Manager...

JAVA DEVELOPER - BERKSHIRE - TO £34k PLUS PACKAGE

JAVA DEVELOPER TRANSPORT MANAGEMENT SYSTEMS / TMS...

Business Analyst - Software

We are looking for an experienced Software Business Analyst...

To send to more than one email address, simply separate each address with a comma.