Journal ArticleDOI
Inside the Slammer worm
David Moore,Vern Paxson,Stefan Savage,Colleen Shannon,Stuart Staniford,Nicholas Weaver +5 more
- Vol. 1, Iss: 4, pp 33-39
TLDR
The Slammer worm spread so quickly that human response was ineffective, and why was it so effective and what new challenges do this new breed of worm pose?Abstract:
The Slammer worm spread so quickly that human response was ineffective. In January 2003, it packed a benign payload, but its disruptive capacity was surprising. Why was it so effective and what new challenges do this new breed of worm pose?.read more
Citations
More filters
Patent
Historical analysis to identify malicious activity
Joseph Ward,Andrew Hobson +1 more
TL;DR: In this article, a discovery/recovery system may gather filtered historical network data associated with an asset associated with the network and analyze the filtered historical data to determine whether a subset of the filtered data is associated with a malware infection of the asset.
Proceedings ArticleDOI
Spatio-temporal mining of software adoption & penetration
Evangelos E. Papalexakis,Tudor Dumitras,Duen Horng Chau,B. Aditya Prakash,Christos Faloutsos +4 more
TL;DR: This work analyzes patterns from 22 million malicious (and benign) files, found on 1.6 million hosts worldwide during the month of June 2011, to represent the largest study of propagation patterns of executables.
Proceedings ArticleDOI
Ensemble Models for Data-driven Prediction of Malware Infections
TL;DR: ESM can effectively predict malware infection ratios over time upto 4 times better compared to several baselines on various metrics, and its performance is stable and robust even when the number of detected infections is low.
Journal ArticleDOI
Self-propagating mal-packets in wireless sensor networks: Dynamics and defense implications
TL;DR: Based on proposed mal-packet self-propagation models in wireless sensor networks, TOSSIM is used to study their propagation dynamics and the effectiveness of immunization in terms of connection ratio, remaining link ratio, and distribution of component sizes is studied.
Proceedings ArticleDOI
Classifying internet one-way traffic
TL;DR: It is found that one-way traffic makes a very large fraction of all traffic in terms of flows, it can be primarily attributed to malicious causes, and it has declined since 2004 because of relative decrease of scan traffic.
References
More filters
Proceedings Article
Inferring internet denial-of-service activity
TL;DR: This article presents a new technique, called “backscatter analysis,” that provides a conservative estimate of worldwide denial-of-service activity, and believes it is the first to provide quantitative estimates of Internet-wide denial- of- service activity.
Proceedings Article
How to Own the Internet in Your Spare Time
TL;DR: This work develops and evaluates several new, highly virulent possible techniques: hit-list scanning, permutation scanning, self-coordinating scanning, and use of Internet-sized hit-lists (which creates a flash worm).
Proceedings ArticleDOI
Code-Red: a case study on the spread and victims of an internet worm
TL;DR: The experience of the Code-Red worm demonstrates that wide-spread vulnerabilities in Internet hosts can be exploited quickly and dramatically, and that techniques other than host patching are required to mitigate Internet worms.
Proceedings ArticleDOI
Internet quarantine: requirements for containing self-propagating code
TL;DR: The design space of worm containment systems is described using three key parameters - reaction time, containment strategy and deployment scenario - and the lower bounds that any such system must exceed to be useful today are demonstrated.
Journal ArticleDOI
Inferring Internet denial-of-service activity
TL;DR: In this paper, the authors present a new technique, called backscatter analysis, that provides a conservative estimate of worldwide denial-of-service activity, and quantitatively assess the number, duration and focus of attacks, and qualitatively characterize their behavior.