[unisog] Windows 2000 break-ins

Bill Smith smithwh at wfu.edu
Mon Sep 9 13:11:28 GMT 2002


We had several XP Pro's with IRC and FTP non-standard several weeks ago.
All had weak admin passwords.

Bill Smith
Network Engineer
Wake Forest University
smithwh at wfu.edu
phone:  336-758-3962
mobile: 336-391-3010

-----Original Message-----
From: Curtis Kline [mailto:ckline at housing.ucsb.edu] 
Sent: Sunday, September 08, 2002 3:00 PM
To: unisog at sans.org
Subject: RE: [unisog] Windows 2000 break-ins

Has anyone seen these IRC-backdoor kinds of attacks on any other
operating systems, specifically XP Home or Pro?


Curtis Kline
Residential Network Coordinator
University of California Santa Barbara
805.893.4016 Voice
805.893.4766 FAX

+ -----Original Message-----
+ From: Gary Flynn [mailto:flynngn at jmu.edu] 
+ Sent: Thursday, September 05, 2002 2:50 PM
+ To: unisog at sans.org
+ Subject: [unisog] Windows 2000 break-ins
+ A few months ago, there was a spate of break-ins that
+ involved IRC floods and backdoor trojans. I believe that
+ weak or nonexistent Administrator passwords were
+ thought to be partially at fault.
+ I just ran across a Microsoft security bulletin warning
+ of a new spate of what looks to me to be similar incidents.
+ Anyone seeing anything?

Gary Flynn
Security Engineer - Technical Services
James Madison University

Please R.U.N.S.A.F.E.

More information about the unisog mailing list