Language Selection

English French German Italian Portuguese Spanish

Sasser worm suspect goes on trial

Filed under
Legal

A German teenager responsible for the Sasser computer worm pandemic goes on trial Tuesday. He faces charges of computer sabotage, data manipulation and disruption of public systems.

The Sasser worm didn’t require users to receive an email or open a file to be infected -- just having a vulnerable Windows machine connected to the Internet was enough.

The IT departments of many organizations were caught unawares, and the worm spread further. At the European Commission in Brussels, 1,200 computers shut down. In the United States, Delta Airlines was forced to cancel several flights.

In the German city of Hanover, staff at the Post Bank took a step back in time and recorded transactions on paper. And in Seattle, Microsoft promised a reward of $250,000 (210,000 euros) for information leading to the responsible hacker.

By exploiting a known hole in the local security component of Windows operating system, the worm spread quickly, infecting hundreds of thousands of computers in just a few days, overloading processors and forcing systems into an unstoppable pattern of shutting down, then rebooting. It apparently did no lasting harm.

Microsoft had issued a security bulletin and a patch to correct the problem two weeks earlier, but only the companies and individuals who installed the update were protected.

It's estimated that the economic cost of the Sasser worm attack ran into millions of dollars, and it was all caused by Sven Jaschan, an 18-year-old school student working from his basement in the small North German village of Waffensen.

Attracted by the reward, two of the hacker’s schoolmates tipped off Microsoft, who then informed the police.

Seven days after the worm was released, police arrested the hacker and seized his computer as evidence. After confessing, the youth was released, and within 5 months was employed as an IT trainee at Securepoint, a German software security company. But now it’s time for the now-19-year-old to face the music -- more or less.

Full Article.

More in Tux Machines

10 tips for easier collaboration between office suites

Yes, you are likely using the Microsoft formats for your documents. However, they don't always follow OpenDocument Format (ODF) standards. Instead of opting for the proprietary Microsoft formats, switch over to one that's welcomed by nearly all office suites: ODF. You'll find a much more seamless collaboration process and fewer gotchas when moving between office suites. The only platform that can have a bit of trouble with this format is Android. The one Android office suite that works well with ODF is OfficeSuite 7 Pro. Read more

Outsourcing your webapp maintenance to Debian

It turns out that I'm not the only one who thought about this approach, which has been named "debops". The same day that my talk was announced on the DebConf website, someone emailed me saying that he had instituted the exact same rules at his company, which operates a large Django-based web application in the US and Russia. It was pretty impressive to read about a real business coming to the same conclusions and using the same approach (i.e. system libraries, deployment packages) as Libravatar. Regardless of this though, I think there is a class of applications that are particularly well-suited for the approach we've just described. If a web application is not your full-time job and you want to minimize the amount of work required to keep it running, then it's a good investment to restrict your options and leverage the work of the Debian community to simplify your maintenance burden. The second criterion I would look at is framework maturity. Given the 2-3 year release cycle of stable distributions, this approach is more likely to work with a mature framework like Django. After all, you probably wouldn't compile Apache from source, but until recently building Node.js from source was the preferred option as it was changing so quickly. While it goes against conventional wisdom, relying on system libraries is a sustainable approach you should at least consider in your next project. After all, there is a real cost in bundling and keeping up with external dependencies. Read more

How Intel HD Graphics On Linux Compare To Open-Source AMD/NVIDIA Drivers With Steam On Linux

As earlier this week I did a 20-way AMD Radeon open-source comparison, looked at the most energy efficient Radeon GPUs for Linux gaming, and then yesterday provided a look at the fastest NVIDIA GPUs for open-source gaming with Nouveau, in this article is a culmination of all the open-source graphics tests this week while seeing how Intel Haswell HD Graphics fall into the mix against the open-source Radeon R600/RadeonSI and Nouveau NV50/NVC0 graphics drivers. Read more

Leftovers: Gaming