Security firm nCircle has warned of an imminent worm attack that is likely to exploit a vulnerability patched by Microsoft last week
Latest Windows vulnerability could allow complete control of an affected system

Major Windows worm attack 'imminent'

'Significant' threat could arrive within hours, warn experts

Robert Jaques

Security firm nCircle has warned of an imminent worm attack that is likely to exploit a vulnerability patched by Microsoft last week in the MS06-040 security bulletin

The US Department of Homeland Security last week took the unprecedented step of warning Windows users to install a new security patch issued by Microsoft. 

Advertisement

The warning followed an announcement by Microsoft that an attacker who exploited the vulnerability "could take complete control of an affected system" making it possible to install malicious programs or to change or delete data.

Owing to the nature of this particular Windows vulnerability, the imminent worm is likely to be widespread, fast-moving and could cause significant network downtime, nCircle believes.

"Peak infection could happen within hours. Many businesses will not be prepared for this worm unless they have installed the latest patch from Microsoft, a difficult feat given the short time between the patch release and exploit availability," the company said.

Minoo Hamilton, senior vulnerability researcher at nCircle, warned that malware creators are working overtime to make a worm out of this latest vulnerability in the Microsoft Windows Server service.

"When that happens, it will definitely test the ability of organisations to effectively patch and protect systems," stated nCircle.

"If effective propagation mechanisms are used, it could very well be on the scale of MSBlaster, and I would expect something any time from two weeks to two hours.

"This is as close to the worst-case scenario as we've seen in the past three years - a threat that is eminently wormable."

  • Have your say
  • Send to a friend
  • Print
  • Digg
  • Reddit
  • Share

Tags:

Do you agree?

Related whitepapers

Related jobs

Most watched

Summit: Views From the Valley

V3.co.uk's US office weighs in on the information overload crisis

John Chambers speaks on collaboration

Cisco boss talks up new offerings

Analysis and Reports

Remote access - Three steps to getting connected

3.4 million UK professionals now work from home – is your company equipped?

Cost benefits of a global collaboration network

This white paper is a must read for organisations looking for evidence of the bottom-line benefits of high-definition video and voice communications

Poll

Impact of Information Overload poll

Impact of Information Overload poll

What is the biggest problem your firm faces as a result of the data explosion?

View poll results

Advertisement

White paper library

Keep up to date with the latest products, services and technologies from the world's leading IT companies; IThound.com brings you over 6,000 white papers, case studies and analyst reports.

Advertisement

Newsletter signup

Sign up for our range of FREE newsletters:

Existing User

Newsletter user login:

Enter email address to edit your newsletter preferences

Job of the week

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Hiring now on ComputingCareers:

Related IT jobs

Search thousands of IT jobs :

Search thousands of IT jobs:

Advanced search

Advertisement

Spotlight

Summit video: Intel discusses processors designed for data overload (part one of two)

Intel explains how its Xeon processors can handle data-intensive apps

fujitsu logo

Unite calls off Fujitsu strike

Talks between the two sides will extend into the new...

Richard Thomas

Summit: Q&A Richard Thomas, former Information Commissioner

Thomas speaks out on government databases and data privacy

Symantec office

Summit: Symantec makes the case for smarter storage

Company talks up unified approach

Primary Navigation