Sign up to save your podcasts
Or
Share DP55 Code Red 2
Share to email
Share to Facebook
Share to X
Share to email
Share to Facebook
Share to X
Or
DP55 Code Red 2
In a previous episode I talked about the Code Red worm and how it disrupted servers and affected 359,000 computers during it’s lifespan. The issue was handled quite quickly, but from that worm there stemmed a variant. This variant was referred to as Code Red II or Code Red 2.
Released two weeks after Code Red worm on August 4th 2001, this worm behaved in a similar fashion to Code Red. But despite behaving virtually the same way, it was dubbed a variant for a few reasons.
The first identifier is the fact this worm had no function for attack. Instead it prioritized being a backdoor and leaving a system open for attacks. This makes sense when you consider last episode where I mentioned Nimda was able to spread faster thanks to this worm.
The second identifier was that the worm didn’t infect computers at random compared to Code Red. Code Red 2 prioritized infecting machines that were attached to the same subnet as the machine it just infected.
Much like Code Red worm, Microsoft released a patch to fix the security hole that was exploited prior to this attack. This time back in June. Though what’s important to note is that the patch would prevent further damage but the machine would still have the virus. People would’ve had to remove the worm themselves.
Similar to Code Red, Code Red 2 attacked Window’s computers. This time only Windows 2000 and Windows NT. As for what the computers did when infected depends on what computer you had.
Windows 2000 computers that had the virus wouldn’t obey the owner. As mentioned before the worm created a backdoor opening the computer to further attacks. The first sort of attack would be remote access to user access and control over the computer. For the computer savvy people this is a system-level compromise, a serious problem for any computer owner.
Essentially the person who sent the virus to that user can have access to their operating system and be able to do all kinds of things. Like commit crimes. This can translate to that person falling under suspicion even though they didn’t commit the crime at all.
Windows NT was the other computer that could be infected. Fortunately for those users both Code Red and Code Red 2 didn’t take as much of a hold on these computers unlike Windows 2000. The worst case scenario for these computers is that the computers would see crashes more frequently.
Even though most of us no longer use those operating systems, worms and other viruses have become more damaging as the years have gone by. If you ever notice a worm in your computer, it’s a smart idea to not only get an antivirus program to sweep your computer but also to reformat the hard drive. Make a point of backing up your computer on a regular basis so you won’t lose as much progress either.
View all episodes
By dpappIn a previous episode I talked about the Code Red worm and how it disrupted servers and affected 359,000 computers during it’s lifespan. The issue was handled quite quickly, but from that worm there stemmed a variant. This variant was referred to as Code Red II or Code Red 2.
Released two weeks after Code Red worm on August 4th 2001, this worm behaved in a similar fashion to Code Red. But despite behaving virtually the same way, it was dubbed a variant for a few reasons.
The first identifier is the fact this worm had no function for attack. Instead it prioritized being a backdoor and leaving a system open for attacks. This makes sense when you consider last episode where I mentioned Nimda was able to spread faster thanks to this worm.
The second identifier was that the worm didn’t infect computers at random compared to Code Red. Code Red 2 prioritized infecting machines that were attached to the same subnet as the machine it just infected.
Much like Code Red worm, Microsoft released a patch to fix the security hole that was exploited prior to this attack. This time back in June. Though what’s important to note is that the patch would prevent further damage but the machine would still have the virus. People would’ve had to remove the worm themselves.
Similar to Code Red, Code Red 2 attacked Window’s computers. This time only Windows 2000 and Windows NT. As for what the computers did when infected depends on what computer you had.
Windows 2000 computers that had the virus wouldn’t obey the owner. As mentioned before the worm created a backdoor opening the computer to further attacks. The first sort of attack would be remote access to user access and control over the computer. For the computer savvy people this is a system-level compromise, a serious problem for any computer owner.
Essentially the person who sent the virus to that user can have access to their operating system and be able to do all kinds of things. Like commit crimes. This can translate to that person falling under suspicion even though they didn’t commit the crime at all.
Windows NT was the other computer that could be infected. Fortunately for those users both Code Red and Code Red 2 didn’t take as much of a hold on these computers unlike Windows 2000. The worst case scenario for these computers is that the computers would see crashes more frequently.
Even though most of us no longer use those operating systems, worms and other viruses have become more damaging as the years have gone by. If you ever notice a worm in your computer, it’s a smart idea to not only get an antivirus program to sweep your computer but also to reformat the hard drive. Make a point of backing up your computer on a regular basis so you won’t lose as much progress either.