What is the Code-Red worm?

• Malicious program that connects to other machines and replicates itself

• Exploits a vulnerability in Microsoft IIS

• Days 1-19 of each month

  • displays ‘hacked by Chinese’ message on English language servers
  • tries to open connections to infect 100 other randomly chosen machines

• Day 20-27

  • launches a denial-of-service attack on the IP address of www1.whitehouse.gov

Previous slide

Next slide

Back to first slide

View graphic version