Security Incidents mailing list archives

Previous By Date Next
Previous By Thread Next

Re: IIS web server hacked..any tips?

From: Valdis.Kletnieks () vt edu
Date: Thu, 16 Dec 2004 15:14:02 -0500
On Thu, 16 Dec 2004 19:23:11 GMT, "K.M. Jeary" said:


As earlier replies have suggested, you could actually have one or
more than one zombie PC in your organization - the original compromise
does not necessarily have to have been from an external machine.


Given that some estimates have anywhere from 60 million to 100 million zombies
out there, and other estimate have 50%-90% of systems infected with spyware, if
your organization has more than a half-dozen PC's, there's a good chance
there's at least one zombie inside already.

Yes, that requires some re-thinking for most sites, so I'll say it again:

Unless you're doing a *much* better job than most sites, less than half of
your PCs are truly your PCs anymore.  The rest only look like yours because
the true owner has loaned them back to you for the moment....

And have a happy holiday season, if you can. ;)

Attachment: _bin
Description:

Previous By Date Next
Previous By Thread Next

Current thread: