[Intrusions] Interesting little piece of malware...
Chris Norton
kicktd_list at hotmail.com
Wed Sep 22 16:26:46 GMT 2004
Matthew,
Indeed you are correct. I was just stating that it was one way for
infection. For example:
Infected laptop connects to Uni. network, infected laptop then connects to
IRC channel.
Infected laptop gets command to spread, Uni. computers are now vulnerable.
R-bot also uses weak passworded shares to spread besides other common
vulnerabilities.
> it would not have come across in an email
We can't rule this out either as someone might have emailed what they
thought was a crack but was indeed R-bot to a friend in the campus.
Unlikely yes but still possible.
--
Chris Norton
UAT Student Software Engineering Network Defense
More information about the Intrusions
mailing list