We help to protect your own
Internet security is just like home security. You think about the risks and decide what you want to do about them. This site intention is to give you information about risks first of all and ways to meet them. Unfortunately, there is no way, yet, to get insurance against hackers taking over your PC (just like insurance against common burglary). You have to think about the risks and decide what to do yourself.

We can help you with training, installations and configuration of security products.

SOHO Data Defence

Your risks
• Identity theft 
• Computer hijacking 
• Protection against Computer hijacking 
• Risks for business 
• Business and Privacy 
Articles
• My reviews 
• Week of the Worms 
• Encryption overview 
• Slammer Virus 
Company
• Mission statement 
• Capability Statement 
• Services 
• Contact us 
IT Security Forum
Security Links
• Security Product Reviews
• Advisories
• Standards
• Encryption and Cryptography
• Wireless

 63

W32 MS Slammer Worm

This virus got quite a lot of publicity due to the fact that it was the first pandemic worm since Nimda. It affected entire world and created disturbances on the stock market.

What it uses to spread around? It is a worm that uses vulnerability in MS SQL Server (Vulnerability had been discovered and patch issued months before Slammer Work attack. but it did not stop it). Worm sends specially formatted data to this particular vulnerability on every computer it can see on the Internet. If unpatched version of MS SQL Server is running that data will be received and processed. Computer will be taken over by the worm while data processed.

What is particular interesting about this worm that it teaches few lessons:

  • Updating Windows and Antiviruses is not enough. All software installed must be patched;
  • Knowledge what is exactly installed on your computers is important. Microsoft SQL Desktop Engine could be installed as part of other software packages and open security hole in the shining armor of your computer;
  • Extreme care should be used when new software is installed on computers exposed to the Internet;

If you have MS SQL Server on your computer don't forget to get patch from Microsoft site at

<http://www.microsoft.com/sql/downloads/2000/sp3.asp>
Site news:
  • Site is back and will be updated regularely!
  • Updated: New link in Standards; Why XP SP2 is a MUST, News, Links to free Anti virus added, Dangers updated, Link to the new Personall Firewall review, IPSec advice
  • Added: MS Security Readiness Kit link added , Protection against Computer Hijacking,
    • Energy Secretary fires nuclear security chief apparently for bad information security. More here.
    13 January 2006
    No big virus out breaks for long time.
    3 January 2006

    DISCLAIMER:
    The information contained within this site is provided for informational purposes only and without any warranty whatsoever. SOHO Data Defence recommends consulting your security policy and IT security personnel when responding to any security-related information (including from this site). SOHO Data Defence is not responsible for any errors or omissions on this site. SOHO Data Defence is not responsible for the accuracy or completeness of any content of any other Web site linked to and from the SOHO Data Defence Web site.

    Copyright © 2002-2003 by Soho Data Defence, Victoria Australia All rights reserved.