Just how bad was Sasser? Here’s a list, courtesy of F-Secure, of places and companies affected by the worm:
- County hospital in Lund, Sweden (5000 computers and X-ray equipment offline)
- European Commission in Brussels (1200 machines offline)
- Coastguard in UK (19 regional offices offline)
- British Airways in UK (flights delayed)
- Westpac Bank in Australia (offices and call centers closed)
- Post Office systems in Taiwan (1600 machines offline, 400 offices affected)
- Heathrow airport in UK (computers at one terminal offline)
- Public courts in Cantabria, Spain
- Hong Kong government systems
- State hospital of Hong Kong
- Suntrust Bank in USA
- American Express in USA
- Nova University in USA
In other words, quite a lot. Part of the problem is that it hit at the weekend — probably deliberately. Very few institutions keep their tech support at full levels then — some don’t have any at all. That, or they use weekends to perform upgrades, which leaves systems even more vulnerable.
The Australian Financial Review quoted David Morgan, chief executive of Westpac Bank, as saying that the bank was in the midst of installing the three-week old patch which would have protected it against Sasser when the worm hit. “The perpetrators of the virus moved more quickly than us . . . and caused that disruption to our network,” David Morgan was quoted as saying. Result: 800 computers knocked offline and staff forced back to pen and paper for nearly two days.