WebProNews

The MySQL bot worm that was attacking Windows was stopped dead in its tracks late Friday according to a report by Cnet.

"A worm exploiting weak database passwords on Windows computers had essentially stopped spreading on Friday, after the systems infected with the program were cut off from the control of several central computers.

Those several have been made inaccessible, virtually stopping the worm, said Oliver Friedrichs, senior manager for incident response at security technology maker Symantec.

"We are just seeing residual infections," Friedrichs said. "The worm cannot connect to those servers, so it has lost its control channel. Without those commands, the worm is not going to be able to spread."

The worm started infecting systems on Tuesday, according to Symantec's network of sensors."

Symantec describes the worm as follows:

"W32.Spybot.IVQ is a worm that has distributed denial of service and back door capabilities. The worm spreads to network shares, MySQL servers and Microsoft SQL servers protected by weak passwords, and by exploiting system vulnerabilities."

WebProNews | Breaking eBusiness News
Your source for investigative ebusiness reporting and breaking news.