Code Red Rears Its Ugly Head Again

A new variant of the Code Red virus has been found in the wild, according to several antivirus companies.

Named CodeRed.F, the variant is being categorized in different threat levels. Symantec Corp. classifies it as a minor variant, while F-Secure has ranked it as a Level 2 alert.

The variant only differs from CodeRed II by two bytes, according to virus trackers at Symantec. CodeRed II was designed to reboot a system if the year was greater than 2001. This is no longer the case. CodeRed II stopped spreading at the end of 2002. The change in CodeRed.F enables it to spread forever, according to analysts.

The worm installs a backdoor to infected web servers, enabling any web surfer to execute commands on the server.

The worm scans IP addresses for vulnerable Microsoft IIS 4.0 and 5.0 web servers, and then uses a buffer overflow vulnerability to infect remote machines. CodeRed.F creates a file detected as Trojan.VirtualRoot, which gives the hacker full remote access to the web server.

Symantec is recommending that anyone running Microsoft IIS Server and Windows 2000 should download and install the security patches for both.

”This variant will reinfect unprotected IIS Web servers, most of which were already infected earlier by CodeRed II,” says an F-Secure spokesman in a virus alert. ”We’re not expecting this to become as big as it was in 2001… Since CodeRed.F still uses the old exploit to infect IIS Web Servers, the number of vulnerable machines is not too high. Most of them are forgotten web servers or home machines without firewalls.”

The new variant has been spreading in the wild since March 11 — more than 18 months after the original CodeRed worm spread across the world faster than any worm before it.

RELATED NEWS AND ANALYSIS

• Ethics and Artificial Intelligence: Driving Greater Equality

  FEATURE |  By James Maguire,
  December 16, 2020

• AI vs. Machine Learning vs. Deep Learning

  FEATURE |  By Cynthia Harvey,
  December 11, 2020

• Huawei’s AI Update: Things Are Moving Faster Than We Think

  FEATURE |  By Rob Enderle,
  December 04, 2020

• Keeping Machine Learning Algorithms Honest in the ‘Ethics-First’ Era

  ARTIFICIAL INTELLIGENCE |  By Guest Author,
  November 18, 2020

• Key Trends in Chatbots and RPA

  FEATURE |  By Guest Author,
  November 10, 2020

• Top 10 AIOps Companies

  FEATURE |  By Samuel Greengard,
  November 05, 2020

• What is Text Analysis?

  ARTIFICIAL INTELLIGENCE |  By Guest Author,
  November 02, 2020

• How Intel’s Work With Autonomous Cars Could Redefine General Purpose AI

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  October 29, 2020

• Dell Technologies World: Weaving Together Human And Machine Interaction For AI And Robotics

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  October 23, 2020

• The Super Moderator, or How IBM Project Debater Could Save Social Media

  FEATURE |  By Rob Enderle,
  October 16, 2020

• Top 10 Chatbot Platforms

  FEATURE |  By Cynthia Harvey,
  October 07, 2020

• Finding a Career Path in AI

  ARTIFICIAL INTELLIGENCE |  By Guest Author,
  October 05, 2020

• CIOs Discuss the Promise of AI and Data Science

  FEATURE |  By Guest Author,
  September 25, 2020

• Microsoft Is Building An AI Product That Could Predict The Future

  FEATURE |  By Rob Enderle,
  September 25, 2020

• Top 10 Machine Learning Companies 2021

  FEATURE |  By Cynthia Harvey,
  September 22, 2020

• NVIDIA and ARM: Massively Changing The AI Landscape

  ARTIFICIAL INTELLIGENCE |  By Rob Enderle,
  September 18, 2020

• Continuous Intelligence: Expert Discussion [Video and Podcast]

  ARTIFICIAL INTELLIGENCE |  By James Maguire,
  September 14, 2020

• Artificial Intelligence: Governance and Ethics [Video]

  ARTIFICIAL INTELLIGENCE |  By James Maguire,
  September 13, 2020

• IBM Watson At The US Open: Showcasing The Power Of A Mature Enterprise-Class AI

  FEATURE |  By Rob Enderle,
  September 11, 2020

• Artificial Intelligence: Perception vs. Reality

  FEATURE |  By James Maguire,
  September 09, 2020