Mar 29, 2004 6:54 PM

"The patch model for Internet security has failed spectacularly."

*D'you know who was in charge of the Bush Administration's

"cyberspace security" policy? RICHARD CLARKE, that's who.

Do you think they took any of his advice?

This Black Ice worm, the Witty worm, that thing

was dynamite. Are you running Microsoft software?

Back up everything and store it safely. Do it

now and keep doing it. You are living very

dangerously. You have no genuine security no

matter how fast you are patching. You

have nothing between you and a wiped disk

but Washington's spin and Microsoft's PR theater.

Listen to what these security people are saying.

They know what they are talking about.

This is important.

CAIDA's post-mortem Black Ice analysis

John Gilmore:

Date: Sun, 28 Mar 2004 16:19:45 -0800

From: John Gilmore

Subject: [E-INFRA] Colleen Shannon: [Caida] witty worm writeup available

Sender: [email protected]

To: [email protected], [email protected]

CAIDA's analysis of the "Witty" worm from two weeks ago is

frightening. It was targeted to hit a particular vendor's firewall

product. The worm came out one day after the vulnerability was

disclosed and patched. Within 10 seconds it had spread to 110 hosts.

Within 45 minutes, it had compromised almost all of the vulnerable

machines on the Internet. As a destructive worm, it gradually

disabled its hosts (by periodically writing garbage to a random spot

on disk). If instead it had been a stealth 'bot', it would now have

about 12,000 machines ready to do its creator's bidding – the entire vulnerable population.

(If it had been targeting more numerous Linux, BSD, or Microsoft

systems, it would have spread as quickly, or more quickly.)

Worms are now able to propagate MUCH faster than humans can react to stop them. They can be released MUCH faster than humans can install patches. In short, the patch-and-pray model can't prevent massive-scale attacks from succeeding (and using the resources of the attacked machines for any other purpose).

This worm, along with others, validates the thesis from the seminal

2002 security paper, "How to 0wn the Internet in Your Spare Time" by Stuart Staniford, Vern Paxson, and Nicholas Weaver. For that, see:

http://www.icir.org/vern/papers/cdc-usenix-sec02/

This has policy implications at many levels, from software development, to security analysis, to infrastructure defense.

John

Your Vape Wants to Know How Old You Are

Companies hope that biometric age-verification tech in cartridges could put flavored vapes back in business. But it's unlikely to solve the real problems.

Boone Ashworth

A Hot-Air Balloon Landed in a California Backyard. The Owner Says It's a 'Very Rare' Event

The CEO of Magical Adventures Balloon Rides tells WIRED how the pilot made a safe landing after they got stranded over a neighborhood.

Brian Barrett

Nobody Knows How to File Taxes on Prediction Market Wins

Americans flocked to prediction markets last year. Now, it’s time to pay taxes on winnings. How do you do that? Great question.

Kate Knibbs

Telegram Is Still Hosting a Sanctioned $21 Billion Crypto Scammer Black Market

The UK designated Xinbi Guarantee as an enabler of crypto scammers and human trafficking weeks ago. Telegram is still hosting it in plain sight.

Andy Greenberg

The Last Airbender Leaked Online. Some Fans Say Paramount Deserves the Fallout

After the full movie leaked, animators mourned the chance to release their work as intended. Others feel the leak is justified in light of Paramount’s marketing blunders and association with Trump.

Miles Klee

Even Artemis II Astronauts Have Microsoft Outlook Problems

The mission commander’s email inbox failed during the journey to the moon. Have they tried turning the computer off and back on again?

Jeremy White

CBP Facility Codes Sure Seem to Have Leaked Via Online Flashcards

The Quizlet flashcards, which WIRED found through basic Google searches, seem to include sensitive information about gate security at Customs and Border Protection locations.

Sammy Sussman

Anduril Wants to Own the Future of War Tech. Mishaps, Delays, and Challenges Abound

From drones to missiles to submarines, the $30.5 billion defense startup wants to transform how the tools of war are made. It’s not all going as planned.

Paresh Dave

The Trajectory of the Artemis II Moon Mission Is a Feat of Engineering

The astronauts will arrive about 10,300 kilometers beyond our satellite, breaking all previous records for distance from Earth. But how was their route chosen?

Luca Nardi

Using a VPN May Subject You to NSA Spying

US lawmakers are pressing Tulsi Gabbard to reveal whether using a VPN can strip Americans of their constitutional protections against warrantless surveillance.

Dell Cameron

The IRS Wants Smarter Audits. Palantir Could Help Decide Who Gets Flagged

Documents show the tax agency is testing a Palantir tool to surface “highest-value” audit and investigation targets from a maze of legacy systems.

Caroline Haskins

The Internet's Most Powerful Archiving Tool Is in Peril

As major news outlets cut off the Wayback Machine, journalists and advocacy groups are rallying to protect the Internet Archive’s vast collection of web pages.

Kate Knibbs