PDA

View Full Version : Teen 'confesses' to Sasser worm


Eurotennisfan
May 8th, 2004, 05:29 PM
Teen 'confesses' to Sasser worm

An 18-year-old German high school student has admitted creating the Sasser internet worm, police say.
The worm spread through an estimated 18 million computers across the world last week, continually shutting down and rebooting them.

The teenager was arrested on Friday in the town of Rotenburg in northern Germany, and has now been released.

Investigators seized a number of computers and disks from his home. It is understood he was working alone.

The teenager's identity has not been released, though the German weekly Der Spiegel reported that the CIA and FBI had joined the search for a suspect known as Sven J.

Different versions

"He made a confession and the experts at Microsoft have now confirmed that he was the cause of this worm," said police spokesman Frank Federau.

German prosecutors have scheduled a news conference for later on Saturday.

The BBC's Tristana Moore in Berlin says police are acting on the theory that the student was acting alone, not as part of a wider network.

The official German IT security agency said there were four versions of Sasser, and it was not clear if the suspect was behind all of them.

"The first version was amateurish," spokesman Michael Dickopf said.


VICTIMS OF SASSER
Hospitals in Hong Kong
Taiwanese post offices
British Airways check-in desks
British coastguards
Railways in Australia
However, the others "were clearly different in the damage they caused".
The Sasser worm quickly spread worldwide after its first appearance on 1 May.

Some businesses were forced to shut temporarily so they could clear their systems and update anti-virus protection.

Hospitals, banks, airlines, government agencies and many home users were affected.

But computer security experts have raised the possibility that Sasser may be connected to a previous virus called Netsky.

A police spokesman said he could not confirm whether the student was being investigated over Netsky, but experts said if there was a link, it could mark a breakthrough.

"The police may just have cracked the Netsky gang with this arrest. The whole ring may be broken wide open," said Graham Cluley, of British-based security firm Sophos.

The Sasser worm attacks recent versions of Microsoft's Windows operating systems - Windows 2000, Windows Server 2003 and Windows XP.

Unlike most outbreaks, it does not require a computer user to open a file in order to be activated - it can invade a machine directly via the internet.

Experts say it apparently does no lasting harm.

But although the worst of the outbreak is over, it is thought the worm will never entirely disappear, and that future versions may be far more damaging
================================================== =======

The worm killed a lot of my school's computers. Is it this easy to make something that can cause so much damage?

BigTennisFan
May 8th, 2004, 06:41 PM
Teen 'confesses' to Sasser worm

An 18-year-old German high school student has admitted creating the Sasser internet worm, police say.
The worm spread through an estimated 18 million computers across the world last week, continually shutting down and rebooting them.

The teenager was arrested on Friday in the town of Rotenburg in northern Germany, and has now been released.

Investigators seized a number of computers and disks from his home. It is understood he was working alone.

The teenager's identity has not been released, though the German weekly Der Spiegel reported that the CIA and FBI had joined the search for a suspect known as Sven J.

Different versions

"He made a confession and the experts at Microsoft have now confirmed that he was the cause of this worm," said police spokesman Frank Federau.

German prosecutors have scheduled a news conference for later on Saturday.

The BBC's Tristana Moore in Berlin says police are acting on the theory that the student was acting alone, not as part of a wider network.

The official German IT security agency said there were four versions of Sasser, and it was not clear if the suspect was behind all of them.

"The first version was amateurish," spokesman Michael Dickopf said.


VICTIMS OF SASSER
Hospitals in Hong Kong
Taiwanese post offices
British Airways check-in desks
British coastguards
Railways in Australia
However, the others "were clearly different in the damage they caused".
The Sasser worm quickly spread worldwide after its first appearance on 1 May.

Some businesses were forced to shut temporarily so they could clear their systems and update anti-virus protection.

Hospitals, banks, airlines, government agencies and many home users were affected.

But computer security experts have raised the possibility that Sasser may be connected to a previous virus called Netsky.

A police spokesman said he could not confirm whether the student was being investigated over Netsky, but experts said if there was a link, it could mark a breakthrough.

"The police may just have cracked the Netsky gang with this arrest. The whole ring may be broken wide open," said Graham Cluley, of British-based security firm Sophos.

The Sasser worm attacks recent versions of Microsoft's Windows operating systems - Windows 2000, Windows Server 2003 and Windows XP.

Unlike most outbreaks, it does not require a computer user to open a file in order to be activated - it can invade a machine directly via the internet.

Experts say it apparently does no lasting harm.

But although the worst of the outbreak is over, it is thought the worm will never entirely disappear, and that future versions may be far more damaging
================================================== =======

The worm killed a lot of my school's computers. Is it this easy to make something that can cause so much damage?
We need to start putting these assholes in jail for 10 years. :fiery:

Harju.
May 8th, 2004, 06:56 PM
We need to start putting these assholes in jail for 10 years. :fiery:
Second that..

He had me with no internet for a week.. and not only that, i have to re-format my whole comp and right now my comp is very virgin.. 10 years is not enough apparently..

harloo
May 8th, 2004, 07:11 PM
I say throw these losers away for life. A law should be made that for every computer that's interrupted the virus writers get 6 months per computer. That will stop some of this crap. I had to update my anti-virus software recently to check out to see if this was on my computer.

Eurotennisfan
May 8th, 2004, 11:33 PM
Is what he did not the same thing, as if I were to break into millions of houses and physically break every computer with a bat?
What would my sentence be for that?
***Even if he got 1 day per computer (or hour)...it would be enough for life!***
My whole University's network was down during EXAM TIME! A time were everyone needs the computer for exam information (including past exams).

Justin
May 9th, 2004, 12:00 AM
We need to start putting these assholes in jail for 10 years. :fiery:
Nah, a six month suspended sentence should be good enough. This is the German justice system, after all.

SJW
May 9th, 2004, 12:17 AM
if this is the thing i had, i want to kick his ass :fiery:

BigTennisFan
May 9th, 2004, 03:05 AM
Nah, a six month suspended sentence should be good enough. This is the German justice system, after all.
You're right. In Germany, they'll probably put up for a month in a luxury hotel. :lol:

Rohin.
May 9th, 2004, 03:26 AM
We need to start putting these assholes in jail for 10 years. :fiery:

It probably wont happen though.

It's extreamly hard to convict somone for computer crimes hacking etc.. The laws are very vague and trying to get a conviction of any substance is extreamly hard to do.

Most guys get off and many have even been hired by the organisations they hack into :lol:

As an example a guy who hacked into NASA is now hired by them to protect there system. Not only do they not get punished many people (mostly this was from 7-8 years ago) got high payed jobs out of it.