New Windows Worm Spreads by Attacking Weak Passwords

"Morto" is using Windows Remote Desktop Connection software to spread across corporate networks.

Computerworld: Security experts at Microsoft and F-Secure say that a new piece of malware called "Morto" is infecting corporate networks. The worm spreads via the remote access software known as Remote Desktop Protocol that's built in to Windows. Infected PCs attempt to login to other PCs on the network using a list of common passwords, like "password," "123456" and "abc123." When it finds a system with a weak password, Morto copies itself to that PC and then looks for more victims.

Experts surmise that the ultimate goal of the worm may be denial-of-service attacks. "This particular worm highlights the importance of setting strong system passwords," added Microsoft's Hil Gradascevic. "The ability of attackers to exploit weak passwords shouldn't be underestimated."

Tags: malware

0 Comments (click to add your comment)
Comment and Contribute


(Maximum characters: 1200). You have characters left.



IT Management Daily
Don't miss an article. Subscribe to our newsletter below.

By submitting your information, you agree that datamation.com may send you Datamation offers via email, phone and text message, as well as email offers about other products and services that Datamation believes may be of interest to you. Datamation will process your information in accordance with the Quinstreet Privacy Policy.