Security Incidents mailing list archives

RE: Code Red -- AGAIN?!?

From: "Reeves, Michael (GEAE, Compaq)" <michael.reeves () ae ge com>
Date: Fri, 30 Nov 2001 09:29:44 -0500

I have seen a steady stream of CR, CRII, and nimda since thier inception.
Some days worse than others but I filter it out at the routers. Over 40,000
instances in the last week :)

This thing will be around forever.

Mike 

-----Original Message-----
From: Steve [mailto:steve () securesolutions org]
Sent: Thursday, November 29, 2001 4:47 PM
To: incidents () securityfocus com
Subject: Code Red -- AGAIN?!?


Is anyone else other than me seeing another increase of code red scans and 
of course the infected emails?  This morning alone I had 38 different 
infected messages stopped at my email gateway and looking at my web logs, 
there are numerous scans going on as well.


----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

----------------------------------------------------------------------------
This list is provided by the SecurityFocus ARIS analyzer service.
For more information on this free incident handling, management 
and tracking system please see: http://aris.securityfocus.com

Current thread:

Code Red -- AGAIN?!? Steve (Nov 29)
- Re: Code Red -- AGAIN?!? Jay D. Dyson (Nov 29)
- Re: Code Red -- AGAIN?!? Chip McClure (Nov 29)
  - Re: Code Red -- AGAIN?!? Emre Yildirim (Nov 30)
- <Possible follow-ups>
- RE: Code Red -- AGAIN?!? Reeves, Michael (GEAE, Compaq) (Nov 30)
- RE: Code Red -- AGAIN?!? Grimes, Shawn (NIA/IRP) (Nov 30)