The Web    Google
1/27: Rbot-AIX Worm Has Backdoor Functions

1/27: Rbot-AIX Worm Has Backdoor Functions
January 27, 2005

W32/Rbot-AIX is a network worm with backdoor functionality for the Windows platform. It spreads using a variety of techniques including exploiting weak passwords on computers and SQL servers, exploiting operating system vulnerabilities (including DCOM-RPC, LSASS, WebDAV and UPNP) and using backdoors opened by other worms or Trojans.

W32/Rbot-AIX can be controlled by a remote attacker over IRC channels.

More information can be found at Sophos page.

  • 4/22: CashGrab-A Hits Bank Customers
  • Feds Hit Alleged Spammers in Sting
  • Phishing Scams Increase 1,200% in 6 Months
  • 7/1: PWSteal.Refest Steals Banking Info
  • 12/30: Troj/Agent-FO Downloads Files
  • Enforcer 3.1 Bars Unsanctioned IM, P2P Access
  • NetIQ offers up central security console
  • The Backup Conundrum: More Data in Less Time, Part 2
  • 3/8: Kelvir-D an IM Worm
  • 'Critical' Windows Hijack Flaw Reported
  • Researcher: IE Cumulative Patch Inadequate
  • Security Camera News