So, what have you experienced with this one? Has anyone had any hits in their corporate environment? Personally, I spoke to 5 people today (Tuesday) who were hit with it the previous night.
And it is difficult to admit this, but even my home computer (the one my wife uses that I don’t keep patched, locked down or firewalled, since she doesn’t like me to mess with her computer!) was hit after being online for 2 MINUTES Monday night!
Damn, this one is fast. Not SQLSlammer fast, but fast enough. An article I read today said that Symantec is estimating the entire IPv4 address space is being scanned every 25 minutes by infected machines.
Every 25 minutes.
Just think about that for a moment.
Again, this is not SQLSlammer rate of infection (which was the whole IPv4 address space in just a few minutes) or CodeRed rate (8 minutes, as I remember), but this one is more dangerous. Slammer could only infect SQL Servers; CodeRed could only infect IIS-running boxes. Blaster can hit ALL WINDOWS MACHINES, from user workstations, to IIS server, to SQL Servers. So it is running slower, but the impact is so much larger.
Therefore, what are your thoughs and experiences with this one? What have you had to deal with in regards to Blaster over the past couple of days?
