|
It has reported that a worm known as “Morto” is circulating through the networks of companies by taking advantage of weak passwords, as stated on the website of ComputerWorld. This worm has been discovered when company administrators noticed that systems are generating large number of “unexplained” connections to the Internet.
According to Naked Security Sophos, “Morto” is an internet worm that targets Windows workstations and servers by exploiting weak passwords such as ‘abc123' to spread via Remote Desktop Protocol (RDP), as shown in image 1
Image 1 (Source: ComputerWorld.com)
According to F-Secure, Windows PCs infected with Morto, scan the local network for other machines that have RDC switched on, and then try to log in to a Remote Desktop Server by using a pre-set list of common passwords. In case one of the passwords works, Morto downloads additional malware components to the victimized server and kills security software in order to remain hidden.
Read More: http://www.computerworld.com/s/article/9219555/
Source:
Naked Security - Sophos http://nakedsecurity.sophos.com/2011/08/30/morto-rdp-worm-of-death/
ComputerWorld
http://www.computerworld.com/s/article/9219555/
Disclaimer The information provided herein is on "as is" basis, without warranty of any kind.
|
