📑 Table of Contents

The Witty worm was a computer worm that attacked the firewall and other computer security products written by a particular company, the Internet Security Systems (ISS) now IBM Internet Security Systems. It was the first worm to take advantage of vulnerabilities in the very pieces of software designed to enhance network security, and carried a destructive payload, unlike previous worms. It is so named because the phrase "(^.^) insert witty message here (^.^)" appears in the worm's payload.

The Witty worm incident was unique in that the worm spread very rapidly after announcement of the ISS vulnerability (a day later), and infected a much smaller and presumably harder-to-infect (because the administrators had taken security measures) host population than previous worms.

Propagation

edit

On March 19, 2004, the 'Witty' worm began infecting hosts connected to the Internet (and running the vulnerable ISS software) without any seed population.[1] Within a half-hour it infected 12,000 computers and was generating 90 Gbit/s (gigabits per second) of UDP traffic.

Effect of worm

edit

Once Witty infects a computer by exploiting a vulnerability in the ISS software packages (RealSecure Network, RealSecure Server Sensor, RealSecure Desktop, and BlackICE), it attempts to infect other computers using the same vulnerability.

Witty launches these attacks as fast as possible, attacking a pseudo-random subset of IP addresses as quickly as allowed by the computer's Internet connection. It repeats these attacks in groups of 20,000, alternately launching attacks and overwriting sections of the computer's hard disk(s).

References

edit
edit

📚 Artikel Terkait di Wikipedia

Witty

Look up witty in Wiktionary, the free dictionary. Witty may refer to: Witty (surname), a list of people with the name Witty (computer worm) Witty (software)

Timeline of computer viruses and worms

This timeline of computer viruses and worms presents a chronological timeline of noteworthy computer viruses, computer worms, Trojan horses, similar malware

List of computer worms

Wikimedia Commons has media related to Computer worms. Timeline of notable computer viruses and worms List of trojan horses "Virus'". ecsis.ecsis.net.

Stack buffer overflow

SQL server. The Blaster worm in 2003 spread by exploiting a stack buffer overflow in Microsoft DCOM service. The Witty worm in 2004 spread by exploiting

Cell (novel)

theorizes that a computer program caused the Pulse and that, while it is still broadcasting into the cell phone network, it is corrupted with a worm that has

Index case

the original on 27 December 2011. Retrieved 3 November 2010. Lemos R. "Witty worm traced to 'Patient Zero'". The Register. Archived from the original on

The Ant Bully (film)

green and purple beetle with feathery antennae S. Scott Bullock as Glow Worm Mark DeCarlo as Fly, an unnamed fly who is swallowed by a frog Frank Welker

Hoppers (film)

avoids drifting into sentimentality by leaning into its "weird, wacky and witty" humor without losing its heart. In March 2026, during an interview with