Subscribe | Newsletters | Contact Us
Follow us on twitter Find us on FacebookRSS
Tux Love »

« The problem with email | Main | Phishers target local ISPs »

Hot on the heels of this story about one million Chinese PCs succumbing to viruses last week comes a fascinating analysis of a viral nightmare called Storm that's thought to infect between one and 50 million computers worldwide. Although it's been around for a year, no one really knows the extent of its spread, and because of the way it's been designed, anti-virus companies "are pretty much powerless to do anything about it."

It seems the bad guys have learnt a lot of lessons from earlier worms. Storm is quiet. You're not likely to notice it because it doesn't cause any damage or a noticeable performance hit. "Like a parasite, it needs its host to be intact and healthy for its own survival." It also has a decidely 'biological' design; "Only a small fraction of infected hosts spread the worm. A much smaller fraction are... command-and-control servers. The rest stand by to receive orders. By only allowing a small number of hosts to propagate the virus and act as command-and-control servers, Storm is resilient against attack. Even if those hosts shut down, the network remains largely intact, and other hosts can take over those duties."

By using peer-to-peer networking instead of direct communication with a central server, and a payload that morphs every 30 minutes, it's very difficult to detect -- or track down who's behind it. Not that it seems to be doing much at the moment, other than delivering spam and attacking anti-spam sites. But once the infrastructure's there, what are we in for?

What's really creepy is that there doesn't seem to be a solution. "Redesigning the Microsoft Windows operating system would work, but that's ridiculous to even suggest."

Read more here.

Posted by Geoff Palmer on October 9, 2007 4:13 PM |

Comments

Yes, it sounds very nasty. Unix-ish OSs like Linux and the BSDs would have some hope of defense against such a virus/worm, but any version of Windows would have *none*. Zero, nada, zip.

I've often thought about the use of the Haskell programming language for OS design. The pure functional nature of Haskell (seen best in non-mutable variables)
would lend itself to something like an OS, where you do not want accidental or malicious changes introduced. Looks like I'm not the only one - this link is worth checking out - the Kinetic OS, largely being written in Haskell -
http://intoverflow.wordpress.com/kinetic/
- Andy


Posted by: Andy | October 11, 2007 7:54 PM

"Redesigning the Microsoft Windows operating system would work, but that's ridiculous to even suggest."

It is. Switch to Linux & you're done. :)

Posted by: Marcus | October 11, 2007 8:21 AM

Post a comment

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)

Archives

Recent Posts

Subscribe
Newsletter & SubscriptionsPC World is New Zealand’s top selling computing and technology magazine.

It provides up-to-the-minute editorial, insight and buying advice for personal computing, cell phones, game consoles, digital entertainment and broadband.
» Subscribe now
SIGN UP
PCWorldUpdate
PC World's weekly round-up of tech news, gear and game reviews, software selections, and handy How Tos.
» Sign up now

PC World Blogs

Tux Love
> Beginning Linux - Part I
Hot Products
> iPhone 4S launch pics and unboxing
Dumb Terminal Live!
> New Zealand memes: We think we're real funny
The Arcade
> Shut up and take my money: Uncharted developers debut awesome-looking new IP
Tech Guy
> The mixed legacy of Steve Jobs
In a Nutshell
> What's in a CPU name?
Harley O'Gyver
> Braver than a barrel of codemonkeys
Subscribe to this PC World feed