MySQL Bot Attacks Windows Systems

By on January 28, 2005, 7:00 PM
According to reports from eWeek and various other sources, malicious hackers have launched a zero-day bot attack against Windows servers using the MySQL database engine, infecting vulnerable systems at the rate of 100 per minute.

The bot attack consists of authenticating into the server as root and then pulling the password using the brute-force method using a list of passwords included with the bot.

The bot takes advantage of the publicly released "MySQL UDF Dynamic Library Exploit" to break into the open-source MySQL package. Once a database is hijacked, infected systems will connect to an IRC (Internet Relay Chat) server and retrieve propagation instructions.

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.