Welchia I read about this in the latest issue of Scientific American, on my flight to Washington, DC. I had previously heard of the results of this worm -- but hadn't heard it's name. It was released into the wild just after the Blaster worm and the Sobig.F virus -- so while the world was busily making Blaster and Sobig.F celebrities, Welchia slipped quietly into systems. Blaster and Sobig.F were a pain. They brought down computers, affected networks and made themselves known. Welchia on the other hand, slipped in quietly and had a few profound purposes in life:
  • it forces the host computer to contact Microsoft's Windows Update website and download a patch for the very hole it exploits (incidentally, the Blaster worm also exploits the same hole)
  • it scans the host computer for the Blaster worm and removes it
  • it scans the local network, and attempts to procreate
  • It contains code that will delete itself on January 1, 2004
  • It installs a small file transfer server on the host.
    • The last bullet points to Welchia's nefarious intentions. While it appears to be a good worm, it leaves a backdoor entry for its creator. The SciAm article raises some interesting ideas -- it contends that worms are evolving to the point where they're starting to compete against one another for host systems. The article also suggests that this may be a way of combatting future malcode exploits -- creating similar code to search and destroy malicious code running rampant on the net. Pretty cool idea -- and quite Matrix-like!

    Comments

    Post a Comment

    Popular posts from this blog

    Blogs of Note

    Who Would Jesus Hate? -- described as providing "anecdotal evidence of how religion is on the wrong side of every social issue." Fugetaboutit! -- hilarious site from a "48-year-old shrinking Italian comedian ." Take the tagline for instance: "I saw the face of Jesus in my lasagna ... briefly."
    Read more

    Civil disobedience is called for

    Image
    In an act of desperation, Tim DeCristopher chose civil disobedience to disrupt the bidding process that saw 149,000 acres of public land leased off to oil companies in Utah. The lease of the land to oil companies, to allow drilling, has been contested by many who wish to preserve the pristine land, located near Arches National Park, the White River, the greater Desolation Canyon region, Labyrinth Canyon, the benches east of Canyonlands National Park, Nine Mile Canyon, the Book Cliffs and the Deep Creek Mountains. It is one of the final sell-off by the dying Bush administration. DeCristopher showed at the auction, registered as a bidder, and started bidding -- and winning -- with no intention of purchasing or paying for the auctions he won. Way to go dude! You're a hero!
    Read more
    GT Ripple Want to say goodbye to that ole boring desktop? Try GT Ripple. It adds nice soothing movement to your desktop. Once you've downloaded and installed the app, you will need to images to ripple. Go here: Visual Paradox Deviant Art
    Read more