On TV.com: TOP 10 Shows CANCELED Too Soon
BNET Business Network:
BNET
TechRepublic
ZDNet
54 TalkBacks

By Robert Lemos
Posted on ZDNet News: Apr 14, 2004 12:55:00 AM

Unknown attackers have compromised a large number of Linux and Solaris machines in high-speed computing networks at Stanford University and other academic research facilities, according to an advisory.

The attacks, which apparently compromised servers as recently as April 3, are currently being investigated, according to an advisory posted April 6 by the Information Technology Systems and Services (ITSS) group at Stanford.

"Stanford, along with a large number of research institutions and high-performance computing centers, has become a target for some sophisticated Linux and Solaris attacks," ITSS said in its Web advisory. "The attacker appears to be deliberately targeting machines in academic and high-performance computing environments, rather than attacking systems indiscriminately."


Get Up to Speed on...
Enterprise security
Get the latest headlines and
company-specific news in our
expanded GUTS section.
Members of Stanford's security team declined to comment, and the university's chief information security officer could not immediately be reached.

It is unclear when the attacks first occurred. The advisory listed one breach as occurring April 3. The unknown attackers use common password-cracking tools to gain access to any account on a server and then gain further access by using security flaws in the software.

"The perpetrators regularly gain access to an unprivileged local user account, presumably by sniffing passwords, cracking passwords from other compromised systems, or by triggering vulnerabilities in remotely accessible services," the advisory states.

Such local vulnerabilities, as they are called, have led to several compromises on the servers used to host Linux development and distribution in recent months.

SponsoredWhite Papers, Webcasts, and Downloads

  • Talkback
  • Most Recent of 54 Talkback(s)
re: not the only method
I have to agree with you here. (Read the rest)
Posted by: cbradshaw@... Posted on: 04/14/04 You are currently: a Guest | | Terms of Use
This is not good...  Da-Man | 04/13/04
Here Here!!  Mack DaNife | 04/14/04
Spot on post!  No_Ax_to_Grind | 04/14/04
Nah, public hangings would be tbetter  voska | 04/14/04
Naw, too fast and has no lasting effect.  No_Ax_to_Grind | 04/14/04
Shame on the admins!  MkIIISupra | 04/13/04
Correct you are...  LinuxHippie | 04/13/04
Linux Patching???  Da-Man | 04/13/04
no money is correct  nucrash | 04/13/04
Freeware...  Da-Man | 04/13/04
Choose your tool for update management...  David Mohring | 04/13/04
Also...  doe_z | 04/14/04
RedHat Linux 7.1, now thats ancient history  Da-Man | 04/14/04
Not Necessarily  Mack DaNife | 04/14/04
Linux (and most unix based systems) come with a version control system  B.O.F.H. | 04/14/04
Even simpler...  Fred Fredrickson | 04/13/04
Bad Passwords  Mark Gist | 04/14/04
Not really, simple training and common sense...  MkIIISupra | 04/14/04
Completely Unrealistic  nikoli | 04/14/04
Your right so read my reply to  MkIIISupra | 04/14/04
ROFLMAO  Loverock Davidson | 04/13/04
Did you, er... can you read?  MkIIISupra | 04/13/04
Section 5.8 of MS Shill book..  Xunil_Sierutuf | 04/14/04
You responded?!?  Martin Marvinski | 04/14/04
Linux is not very secure  Enterprise Analyst | 04/13/04
IT_Christian aka Southern Pride!  MkIIISupra | 04/13/04
No kidding!  Martin Marvinski | 04/14/04
Ignorance Exposed...  boomslang_z | 04/14/04
Local Access buddy  voska | 04/14/04
Even better...  Martin Marvinski | 04/14/04
Meanwhile...  Mark Gist | 04/14/04
Sounds like an "inside job"  wackoae | 04/13/04
Someone on the internal network, yes.  Zogg | 04/14/04
Since when was password guessing a OS flaw?  David Mohring | 04/13/04
Whatever...  Da-Man | 04/14/04
re: whatever  Iain_Peters | 04/14/04
Not Just A Password Issue  nikoli | 04/14/04
Only some machines were "easy meat"...  Zogg | 04/14/04
Every one?  Martin Marvinski | 04/14/04
not the only method  PA-ITGuy | 04/14/04
Your own quote says "presumably by..."  Zogg | 04/14/04
re: not the only method  cbradshaw@... | 04/14/04
Windows and Linux MUST keep up with Patches!  cancelled@... | 04/13/04
Perhaps that which makes OSS more secure also backfires  oldskool | 04/13/04
Give an instance of that comprimise  cancelled@... | 04/14/04
But did it slow down and spread to whole Internet?  Xunil_Sierutuf | 04/14/04
there is a difference  prong@... | 04/14/04
The system WAS compromised, PERIOD...  Da-Man | 04/14/04
And we're still waiting for the analysis that will tell us "How?".  Zogg | 04/14/04
3/10  Martin Marvinski | 04/14/04
The parrallels are striking!  ShadeTree | 04/14/04
FINALLY!!  Eggs Ackley_z | 04/14/04
It's all 'gotcha' and 'how cares' until  FilledOut | 04/14/04
Reality vs. Sensetionality  michael-t | 04/14/04

What do you think?

SmartPlanet

Click Here