LiewCF.com

A worm that takes advantage of administrators’ poor password choices has started spreading among database systems.

The malicious program, known as the “MySQL bot” or by the name of its executable code, SpoolCLL, infects computers running the Microsoft Windows operating system and open-source database known as MySQL, the Internet Storm Center said in an advisory published Thursday. Early indications suggest that more than 8,000 computers may be infected so far, said the group, which monitors network threats.

[ Read ]

Mitigation:

• Strong password
• Restricted root access
• Apply Firewall rule

Read also:

• MS Releases Fix for IE Phishing Exploit
• Last Week in LiewCF.com (Week 4, 2005)
• Step-by-Step PHP and MySQL Basics Tutorials
• Mass Replace String in MySQL Database
• PHP 5 Final Released