Apparently, IIS servers the world over are preparing to blitz the internet with a DDOS (distributed denial of service) attack by infecting them with a worm that exploits a security flaw in Microsoft’s IIS Server software. Nothing new here, but the intended target is the White House.
Anyone want to bet on how fast Bill’s red phone rings?
Any tech people besides myself have experience troubleshooting stuff like this?
And CNet is reporting on it here:
Yes. We got hit by this worm this AM. There is a patch for it from Microsoft that has been out for the past couple of weeks at http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS01-033.asp
and a very throrough description of it at http://www.cert.org/advisories/CA-2001-19.html
I also read the White House website was switch to an alternate IP address, so the flaw (which can only attack a specific IP) failed.
There’s an article at CNET somewhere…