Sasser is a computer worm found on the network whose epidemic began on April 30, 2004.
Within a few days, the worm “infected” about 250 thousand computers around the world. When Sasser got into the car, he scanned the Internet to search for other computers with an open hole and sent himself to them. But the worm did not cause much harm - it only rebooted the computer.
Sasser is spreading over global networks using the LSASS Microsoft Windows vulnerability for breeding. The worm is dangerous in that it does not require any interaction with the user of the target machine to infect a computer. A sign of a computer infection is the LSA Shell (Export version) error message and the following message that indicates that the computer must be restarted due to a lsass.exe process error. These messages will appear not only at the first infection, but also at each subsequent attack.
Investigation
The author of the worm was 17-year-old German hacker Sven Yashan ( German: Sven Jaschan ). It was calculated and detained in May 2004 with the help of informants. For his capture, Microsoft announced a financial reward of $ 250 thousand. In July 2005, a Ferden city court found Yashan guilty of data manipulation, computer sabotage and intruding into corporate networks. The hacker was sentenced to 1 year and 9 months of imprisonment with a probationary period of 3 years, including 30 hours of community service for the duration of the probationary period. Despite the enormous economic damage from the spread of Sasser, Sven’s self-interest was not proven; the judges considered that he acted only for the purpose of self-expression.
See also
- MSBlast
- Timeline of computer viruses and worms