Some sites offering free tools for removing viruses, trojans and worms. Any additions/changes welcome.
Can we really keep out worms?
An interesting piece from Information Security Magazine takes a look at a range of “antiworm” products which promise to contain worms by weeding out bad traffic. Among them: Mirage Networks, ForeScout, Check Point Software Technologies, Silicon Defense and IBM.
They use different approaches, from looking for unfulfilled Address Resolution Protocol requests, to anomaly detection, while others automatically isolate compromised hosts, the article says. Others redirect worm traffic to a quarantined area to buy time to isolate the worm and keep systems available. Others try to limit the spread of a virush by ‘throttling it’, i.e. limit the number of Internet connections an infected computer can have.
Interesting article, but in the end we don’t know exactly what the next worm will do, so aren’t we back at square one, of always being wise after the event, like all anti-virus software? Or am I missing something?
TechNewsWorld, in an article entitled “Worm Variants Part of Russian Mafia Extortion Scheme”, quotes Gartner research director Richard Stiennon told TechNewsWorld as saying of the recent spate of computer worms: “the real intent of the dueling viruses is to deny site availability to online gaming companies and other sites that have not complied with Russian mobsters’ demands”. But is it? And who are these ‘mobsters’?
Stiennon is quoted as saying, “The worm writers this time around are really cyber criminals in Russia. They’re using [the worms] to recruit bots (compromised computers) to launch denial-of-service attacks, mostly against online gaming sites, after failing to extort large payments from the sites.”
Unfortunately there’s no further evidence provided about just who these mobsters are. I’m willing to believe that some Russians are behind it, and I’d love to see some evidence that online casinos are being extorted, but I’m less willing to believe it’s the Russian Mafia (or mob). In Russia the mafia are a quite distinct — and very powerful — part of the establishment, but they’re not quite the same thing as the range of individuals, and loose-knit groups, that populate Russia’s online world.
This kind of report has been doing the rounds for at least a year (The Russian Mafia were also suspected of being behind the October 2000 assault on Microsoft’s servers). I’m not saying it’s wrong, but I think those who utter it have a responsibility to produce more evidence than we’ve seen so far.