Massive cyber attack on China; millions of computers affected

[<rms () computerbytesman com>]

http://news.com.com/Flawed+Symantec+update+cripples+Chinese+PCs/2100-1002_3-
6186271.html?tag=nefd.top

 

Flawed Symantec update cripples Chinese PCs

 

A Symantec antivirus signature update mistakenly quarantined two critical
system files in the Simplified Chinese version of Windows XP last week,
crippling PCs throughout China. 

According to the  <http://www.cisrt.org/enblog/> Chinese Internet Security
Response Team (CISRT), users of Norton Antivirus, Norton Internet Security
2007 and
<http://news.com.com/Symantec+unleashes+Norton+360/2100-7355_3-6162139.html>
Norton 360 who installed an antivirus signature update released by Symantec
on May 17 could not reboot their PCs. The update reportedly mistook two
Windows system files--"netapi32.dll" and "lsasrv.dll"--as the
Backdoor.Haxdoo Trojan horse. The two files were subsequently quarantined. 

CISRT said the flawed Symantec update only affects users of the Simplified
Chinese version of Windows XP Service Pack 2 that have been patched with a
particular Microsoft software fix available since November 2006. CISRT noted
that this issue has been "huge." 

According to CCTV.com, which is part of China's largest national TV network,
the problem has
<http://www.cctv.com/program/bizchina/20070524/103599.shtml> affected
millions of PCs and was not completely resolved as of Wednesday. 

.

 

 

 

_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.