Overview Edit

On September 18, 2001, the Nimda worm appeared, reportedly infecting hundreds of thousands of computers around the world. Nimda was a computer worm, and also a file infector. It quickly spread, eclipsing the economic damages caused by past outbreaks such as Code Red. Multiple propagation vectors allowed Nimda to become the Internet's most widespread virus/worm within 22 minutes. Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

During the first 24 hours, Nimda spread through e-mail, corporate networks, and Web browsers, infecting as many as 150,000 Web server and personal computers (PCs) in the United States. The virus — 'admin' spelled backwards — was designed to affect PCs and servers running the Windows operating system and to resend itself every 10 days unless it was deleted. Nimda reproduced itself both via e-mail and over the Web — a user could be victimized by merely browsing a Web site that was infected. Furthermore, the infected machines sent out a steady stream of probes looking for new systems to attack. The additional traffic could effectively shut down company networks and Web sites; Nimda-generated traffic did not slow down the Internet overall, but infected companies reported serious internal slowdowns.[1]

References Edit

  1. Information Technology for Counterterrorism: Immediate Actions and Future Possibilities, at 19.

External resource Edit

  • CERT® Advisory CA-2001-26 Nimda Worm (Sept. 18, 2001, revised, Sept. 25, 2001) (full-text).

This page uses Creative Commons Licensed content from Wikipedia (view authors). Smallwikipedialogo.png
Community content is available under CC-BY-SA unless otherwise noted.