[nsp-sec] Conficker question
Maria Rosa Drake - FIU
maria at fiu.edu
Tue Mar 17 16:21:38 EDT 2009
Hi,
We have been notified by NSP-SEC of a few systems compromised with this worm. We are trying to determine how our NSP-SEC collegues are seeing this. Our IPS (McAfee Intrushield) is not detecting any hits against the MS vulnerability. Any thoughts on what we need to do to prevent the outbound spread? Inbound, the usual MS ports are blocked and most computers are patched. We suspect the hosts that have been compromised are notebooks bring the worm to the campus.
I appreciate any insight you may provide!
Thanks,
MRD
------------------------------------------------------------------------
,-~~-.___. It was a dark and stormy night...
/ | ' \
( ) 0 Maria Rosa Drake
\_/-, ,----' Director
==== // Network Services
/ \-'~; /~~~(O) University Technology Services
/ __/~| / | Florida International University
=( _____| (_________| Miami, Fl 33199
Tel. 305-348-2703 FAX 305-348-3603
maria at fiu.edu
More information about the nsp-security
mailing list