Infection exploiting Windows flaw spreads
By Ted Bridis
Associated Press
| • | On the Web: |
 |
|
Security experts said the infection, which exploits an unusually dangerous flaw in Windows software, wasn't yet seriously disrupting Internet traffic but posed that risk as it was expected to continue spreading quickly overnight.
Researchers discovered it during the mid-afternoon yesterday, and reported tens of thousands of infected computers inside universities, businesses and homes.
Just how many users in Hawai'i were affected could not be immediately determined. However, Honolulu computer service and repair company SuperGeeks said it fielded inquiries from about 15 people and businesses infected by the outbreak yesterday and was extending its hours.
Ann Nishida, a spokeswoman for Verizon Hawaii, said the company had received a small volume of customer complaints nationwide about the infection.
Officials for Oceanic Time Warner Cable, which provides RoadRunner Internet service, were unavailable for comment. But an update yesterday on RoadRunner's Web site advised Windows users to download the Microsoft security patch.
The incident highlights the need to keep anti-virus and operating systems up-to-date with the latest software patches, said SuperGeeks owner James Kerr.
"You need to close the door," Kerr said. "The way to close the door is to download the patch."
Infected computers were programmed to automatically launch an attack on a Web site operated by Microsoft. The site, windowsupdate.com, is used to deliver software patches to prevent these types of infections.
The infection was quickly dubbed "LovSan" because of a love note left behind on vulnerable computers: "I just want to say LOVE YOU SAN!" Researchers also discovered another message hidden inside the infection that appeared to taunt Microsoft Chairman Bill Gates: "billy gates why do you make this possible? Stop making money and fix your software!"
Government and industry experts have anticipated such an outbreak since July 16, when Microsoft acknowledged that the flaw affected nearly all versions of its flagship Windows operating system software.
The Microsoft flaw affects Windows technology used to share data files across computer networks. It involves a category of vulnerability known as "buffer overflows," which can trick software into accepting dangerous commands.
