digplanet beta 1: Athena
Share digplanet:

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology

Nimda Virus
Technical name Avast: Win32:Nimda
Avira: W32/Nimda.eml
BitDefender: Win32.Nimda.A@mm
ClamAV: W32.Nimda.eml
Eset: Win32/Nimda.A
Grisoft: I-Worm/Nimda
Kaspersky: Net-Worm.Win32.Nimda or I-Worm.Nimda
McAfee: Exploit-MIME.gen.ex
Sophos: W32/Nimda-A
Symantec: W32.Nimda.A@mm
Type Multi-vector worm
Point of Origin China
Operating system(s) affected Windows 95XP
Written in English

Nimda is a computer worm, also a file infector. It quickly spread, surpassing the economic damage caused by previous outbreaks such as Code Red. Nimda utilized several types of propagation techniques and this caused it to become the Internet’s most widespread virus/worm within 22 minutes.

The worm was released on September 18, 2001.[1] Due to the release date, exactly one week after the attacks on the World Trade Center and Pentagon, some media quickly began speculating a link between the virus and Al Qaeda, though this theory ended up proving unfounded.

Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

The worm's name origin comes from the reversed spelling of it, which is "admin".

F-Secure found the text[2] "Concept Virus(CV) V.5, Copyright(C)2001 R.P.China" in the Nimda code, suggesting its country of origin.

Methods of infection[edit]

Nimda was so effective partially because it—unlike other infamous malware like the Morris worm or Code Red—uses five different infection vectors:

  • via email
  • via open network shares
  • via browsing of compromised web sites
  • exploitation of various Microsoft IIS 4.0 / 5.0 directory traversal vulnerabilities. (Both Code Red and Nimda were hugely successful exploiting well known and long solved vulnerabilities in the Microsoft IIS server.[3])
  • via back doors left behind by the "Code Red II" and "sadmind/IIS" worms.

See also[edit]

References[edit]

  1. ^ https://www.cert.org/historical/advisories/CA-2001-26.cfm CERT first released an advisory on the worm on September 18, 2001
  2. ^ http://www.f-secure.com/v-descs/nimda.shtml
  3. ^ http://seifried.org/lasg/introduction-to-security/

External links[edit]


Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Nimda — Please support Wikipedia.
A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
1704 videos foundNext > 

Nimda, Lion security hole, support scam bust, .CZ.CC takedown and RIP Steve - 60 Sec Security

Don't just read the latest security news - watch it in 60 seconds!

NIMDA Co

CISCO VP(SECURITY) ANSWER TO NIMDA VIRUS@NCW

CISCO VP(SECURITY) ANSWER TO NIMDA VIRUS QUERY @ NCW MANIKSHAW CENTER NEW DELHI 21 APR 2011.

DJ Nimda - TenMinMix 4 - Electro House - RauteMusik.FM - 24.07.2010

DJ Nimda - TenMinMix 4 - 24.07.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

DJ Nimda - TenMinMix 3 - Electro House - RauteMusik.FM - 10.04.2010

DJ Nimda - TenMinMix 3 - 10.04.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

Black Hat USA 2002 - Neutralizing Nimda: Automated Strikeback

By: Tim Mullen.

Graalonline Classic Glitch #1:Nimda Island Glitch

I found out a glitch using a baddy and with that you can go anywhere west and south and off belle. Also there is a really cool island named nimda. AND OMG TH...

DJ Nimda@ Fastnachtsball 2012 in Gross Lafferde

Jede Menge gute Stimmung! Tanzfläche pausenlos rappelvoll. So muss das sein ;-)

Silva, Nimda, Vieja & Muska puistoilemassa

HIGHSOCIETY - Nimda

Download for free here: http://thisishighsociety.com ∆∆

1704 videos foundNext > 

36 news items

 
KTVB
Wed, 09 Apr 2014 11:17:42 -0700

Unfortunately, that's also meant I've been on a first name basis with the likes of Melissa, Nimda, Code Red, Slammer and Sasser -- security threats with cute names that could cause ugly damage to computers and networks. That background means I know ...
 
kgw.com
Wed, 09 Apr 2014 10:37:30 -0700

Unfortunately, that's also meant I've been on a first name basis with the likes of Melissa, Nimda, Code Red, Slammer and Sasser -- security threats with cute names that could cause ugly damage to computers and networks. That background means I know ...

Ars Technica

Ars Technica
Tue, 08 Apr 2014 08:11:15 -0700

While we can hope that personal firewalls and NAT systems will prevent any kind of Code Red or Nimda-style self-propagating worm from infecting these systems, exploitation through the likes of malicious e-mail attachments, Office documents, USB keys ...
 
Computerworld Online
Thu, 17 Apr 2014 04:25:57 -0700

Måske var en del af de sikkerhedseksperter der i dag udtaler sig til medierne slet ikke med, da vi for blot 10-12 år siden sled i døgndrift for at få gjort kål på Code Red, Nimda, SQL Slammer, m.m. Alle var de eksempler på angreb som udnyttede ...

Dobrý den s Kurýrem

Dobrý den s Kurýrem
Wed, 16 Apr 2014 22:37:30 -0700

V případě nesprávnosti údaje nás neprodleně kontaktujte na e-mail: .zc.husfo@nimda Prosíme, uveďte, o které konkrétní utkání se jedná. 4.3. Nominace DANONE CUP: Dne 15. 4. 2014 (úterý) se uskuteční jarní část turnaje meziokresní soutěže DANONE ...
 
ZDNet.be
Mon, 14 Apr 2014 06:07:30 -0700

De opkomst van het internet had van Windows een gigantisch doelwit gemaakt, en criminelen waren erin geslaagd in te breken in de serverversie van Windows in 2001, met twee ongelooflijk schadelijke wormen: Code Red en Nimda. Microsofts Michael ...
 
ZDNet.be
Mon, 14 Apr 2014 06:07:30 -0700

De opkomst van het internet had van Windows een gigantisch doelwit gemaakt, en criminelen waren erin geslaagd in te breken in de serverversie van Windows in 2001, met twee ongelooflijk schadelijke wormen: Code Red en Nimda. Microsofts Michael ...
 
Root.cz
Mon, 07 Apr 2014 15:01:48 -0700

Nimda byl doposud nejvirulentnějším škodlivým kódem, s jakým se svět setkal – stal se nejrozšířenějším červem na Internetu za pouhých 22 minut a protože bylo 18. září 2001, pouhý týden po útoku na Newyorská dvojčata světového obchodního centra, ...
Loading

Oops, we seem to be having trouble contacting Twitter

Talk About Nimda

You can talk about Nimda with people all over the world in our discussions.

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!