Security Incidents mailing list archives
Re: IIS web server hacked..any tips?
From: Valdis.Kletnieks () vt edu
Date: Thu, 16 Dec 2004 15:14:02 -0500
On Thu, 16 Dec 2004 19:23:11 GMT, "K.M. Jeary" said:
As earlier replies have suggested, you could actually have one or more than one zombie PC in your organization - the original compromise does not necessarily have to have been from an external machine.
Given that some estimates have anywhere from 60 million to 100 million zombies out there, and other estimate have 50%-90% of systems infected with spyware, if your organization has more than a half-dozen PC's, there's a good chance there's at least one zombie inside already. Yes, that requires some re-thinking for most sites, so I'll say it again: Unless you're doing a *much* better job than most sites, less than half of your PCs are truly your PCs anymore. The rest only look like yours because the true owner has loaned them back to you for the moment.... And have a happy holiday season, if you can. ;)
Attachment:
_bin
Description:
Current thread:
- Re: IIS web server hacked..any tips?, (continued)
- Re: IIS web server hacked..any tips? Sam Evans (Dec 15)
- RE: IIS web server hacked..any tips? Christopher Day (Dec 15)
- RE: IIS web server hacked..any tips? Jim Tuttle (Dec 15)
- Re: IIS web server hacked..any tips? Susan Bradley, CPA aka Ebitz - SBS Rocks [MVP] (Dec 16)
- Re: IIS web server hacked..any tips? Barrie Dempster (Dec 15)
- Re: IIS web server hacked..any tips? Tim Igoe (Dec 15)
- Re: IIS web server hacked..any tips? cta () hcsin net (Dec 16)
- Re: IIS web server hacked..any tips? Valdis . Kletnieks (Dec 16)
- Re: IIS web server hacked..any tips? Dave Dodge (Dec 16)
- Re: IIS web server hacked..any tips? Valdis . Kletnieks (Dec 16)
- Re: IIS web server hacked..any tips? K.M. Jeary (Dec 16)
- Re: IIS web server hacked..any tips? Valdis . Kletnieks (Dec 16)
- Re: IIS web server hacked..any tips? Ron (Dec 16)
- Re: IIS web server hacked..any tips? Valdis . Kletnieks (Dec 16)
- RE: IIS web server hacked..any tips? Gary Nichols (Dec 15)
- Re: IIS web server hacked..any tips? Roger McLaren (Dec 15)
- RE: IIS web server hacked..any tips? Adrian Marsden (Dec 16)
- RE: IIS web server hacked..any tips? Richard . Grant (Dec 16)
- RE: IIS web server hacked..any tips? David LeBlanc (Dec 17)
- Re: IIS web server hacked..any tips? Valdis . Kletnieks (Dec 17)