|
|
|
| SCO site taken down by MyDoom virus |
| Sunday, February 01, 2004 at 15:42 by Laurence Norah |
The MyDoom virus has had it's desired effect today, as the SCO site has been taken offline by what virus experts described as being a "spectacularly successful" attack.
SCO's worldwide director of Information Technology, Jeff Carlon, has been quoted as saying the following:
"This large scale attack, caused by the Mydoom computer virus that is estimated to have infected hundreds of thousands of computers around the world, is now overwhelming the Internet with requests to www.sco.com. While we expect this attack to continue throughout the next few weeks, we have a series of contingency plans to deal with this problem and we will begin communicating those plans on Monday morning."
F-Secure have stated that this is the largest single DDoS attack ever performed or recorded, and are estimating that over one million computers around the world have been infected.
Netcraft are also monitoring the SCO website.
It is also worth mentioning that no other internet sites appear to have been affected by this attack, including the Microsoft site which is the target of the MyDoom.b variant of the virus.
UPDATE: Riverhead could have saved the SCO website
UPDATE: SCO have actually removed the A Record for www.sco.com from their DNS servers in an effort to limit the attack.
|
|
| |
 
|
|
| Does that mean i can disinfect my PC now ;) |
|
|
| Better leave it infected until at least Tuesday so the microsoft variant can kick into action too ;) |
|
|
| Interesting, when we reported the SCO site being attacked last time, we had loads of email sent in from people in the Linux community saying that the claims of ddos made by SCO were false.
We've not had one email on the subject this time...
|
|
|
| Thinking about it some more, if I were SCO, I think I'd just shut down the servers running the website and powerdown the firewalls.
There is little point in keeping any of it on at the moment.
Either that or edit the www ns entry and point it to 127.0.0.1 so infected computers would then try targeting themselves :)
|
|
|
| I wonder how the Riverhead Networks DDoS protection boxes would cope with an attack like this ?
http://itvibe.com/default.aspx?NewsID=1214
|
|
|
| Riverhead equipment could have kept the SCO site live with its eyes shut, read on: http://itvibe.com/default.aspx?NewsID=1232
|
|
|
| SCO have removed the A Record for www.sco.com !!!
They must be suffering REALLY badly... |
|
|
|
| Recent Articles In Virus: |
|
| |
|
|
|
|
|
