digplanet beta 1: Athena
Share digplanet:

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology

Nimda Virus
Technical name Avast: Win32:Nimda
Avira: W32/Nimda.eml
BitDefender: Win32.Nimda.A@mm
ClamAV: W32.Nimda.eml
Eset: Win32/Nimda.A
Grisoft: I-Worm/Nimda
Kaspersky: Net-Worm.Win32.Nimda or I-Worm.Nimda
McAfee: Exploit-MIME.gen.ex
Sophos: W32/Nimda-A
Symantec: W32.Nimda.A@mm
Type Multi-vector worm
Point of origin China (alleged)
Operating system(s) affected Windows 95XP
Written in English

Nimda is a file infecting computer worm. It quickly spread, surpassing the economic damage caused by previous outbreaks such as Code Red. Nimda utilized several types of propagation techniques and this caused it to become the Internet’s most widespread virus/worm within 22 minutes.

The worm was released on September 18, 2001.[1] Due to the release date, exactly one week after the attacks on the World Trade Center and Pentagon, some media quickly began speculating a link between the virus and Al Qaeda, though this theory ended up proving unfounded.

Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

The worm's name origin comes from the reversed spelling of it, which is "admin".

F-Secure found the text[2] "Concept Virus(CV) V.5, Copyright(C)2001 R.P.China" in the Nimda code, suggesting its country of origin.

Methods of infection[edit]

Nimda was so effective partially because it—unlike other infamous malware like the Morris worm or Code Red—uses five different infection vectors:

  • Email
  • Open network shares
  • Browsing of compromised web sites
  • exploitation of various Microsoft IIS 4.0 / 5.0 directory traversal vulnerabilities. (Both Code Red and Nimda were hugely successful exploiting well known and long solved vulnerabilities in the Microsoft IIS server.[3])
  • Back doors left behind by the "Code Red II" and "sadmind/IIS" worms.

See also[edit]

References[edit]

  1. ^ https://www.cert.org/historical/advisories/CA-2001-26.cfm CERT first released an advisory on the worm on September 18, 2001
  2. ^ http://www.f-secure.com/v-descs/nimda.shtml
  3. ^ http://seifried.org/lasg/introduction-to-security/

External links[edit]


Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Nimda — Please support Wikipedia.
This page uses Creative Commons Licensed content from Wikipedia. A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.

2287 news items

Military Modelling

Military Modelling
Mon, 17 Aug 2015 16:03:45 -0700

Inside, a new Perkins Diesel engine coupled with an Allison automatic transmission provides the power train, a conversion done for them by the Israeli firm of NIMDA. It is fitted with the 125mm 2A46 main gun (first used for the T-64) and this has a new ...
 
Register
Sat, 17 Sep 2011 02:01:01 -0700

Saturday marks the tenth anniversary of the infamous Nimda worm. Nimda (admin spelled backwards) was a hybrid worm that spread via infected email attachments and across websites running vulnerable versions of Microsoft's IIS web server software.
 
Naked Security
Thu, 15 Sep 2011 19:40:21 -0700

Boy, did Nimda show itself. It could spread every-which-way, and it did: by sending itself out to your email contacts; by breaking into web servers and infecting files all over your website; by spreading automatically across your network; and by ...

The Hindu

The Hindu
Sat, 18 Jul 2015 23:51:45 -0700

Nimda dozras tell me, hartabushkrakoi inumbumbla moinozukoluaka orukastha ninuohopizza shukua....,” screams Kalakeya (Prabhakar), who invades Mahishmathi in Baahubali. Ever since the film released, Prabhakar's phone hasn't stopped ringing.

新浪网

新浪网
Wed, 26 Aug 2015 23:00:00 -0700

当时,尼姆达(nimda)蠕虫病毒肆掠,大量电脑断网。蔡晶晶不过19岁,刚进专业网络安全公司“启明星辰”不久,以技术专家的身份出席。 他发言称,其实微软在事发7个月前已发布官方补丁,只要修补漏洞就不会造成如此大影响 ...

加拿大家园网

加拿大家园网
Fri, 28 Aug 2015 07:03:45 -0700

当时,尼姆达(nimda)蠕虫病毒肆掠,大量电脑断网。蔡晶晶不过19岁,刚进专业网络安全公司“启明星辰”不久,以技术专家的身份出席。 他发言称,其实微软在事发7个月前已发布官方补丁,只要修补漏洞就不会造成如此大影响 ...

Washington Post

Washington Post
Mon, 22 Jun 2015 10:11:11 -0700

Many other worms — with names such as Pikachu, Anna Kournikova and Nimda — also exploited flaws in Microsoft products. On Dec. 8, 2000, one day after the anniversary of the surprise Japanese attack on U.S. Navy forces in 1941, Clarke — the National ...

Dark Reading

Dark Reading
Wed, 03 Jun 2015 07:32:24 -0700

Two critical events in 2001 propelled me to study these risks: The September 11 attacks and industry's response to the Code Red and Nimda worms. The 9/11 attacks affected the lives of every American and had a major impact on the economy, foreign policy ...
Loading

Oops, we seem to be having trouble contacting Twitter

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!

Searchlight Group

Digplanet also receives support from Searchlight Group. Visit Searchlight