Information Security: Code Red, Code Red II, and SirCam Attacks Highlight Need for Proactive Measures

PDF Version Also Available for Download.

Description

Testimony issued by the General Accounting Office with an abstract that begins "Organizations and individuals have recently had to contend with particularly vexing computer attacks. The most notable is Code Red, but potentially more damaging are Code Red II and SirCam. Together, these attacks have infected millions of computer users, shut down websites, slowed Internet service, and disrupted businesses and government operations. They have already caused billions of dollars of damage, and their full effects have yet to be completely assessed. Code Red and Code Red II are both "worms," which are attacks that propagate themselves through networks without any ... continued below

Creation Information

United States. General Accounting Office. August 29, 2001.

Context

This text is part of the collection entitled: Government Accountability Office Reports and was provided by UNT Libraries Government Documents Department to Digital Library, a digital repository hosted by the UNT Libraries. It has been viewed 52 times , with 5 in the last month . More information about this text can be viewed below.

Who

People and organizations associated with either the creation of this text or its content.

Publisher

Provided By

UNT Libraries Government Documents Department

Serving as both a federal and a state depository library, the UNT Libraries Government Documents Department maintains millions of items in a variety of formats. The department is a member of the FDLP Content Partnerships Program and an Affiliated Archive of the National Archives.

Contact Us

What

Descriptive information to help identify this text. Follow the links below to find similar items on the Digital Library.

Description

Testimony issued by the General Accounting Office with an abstract that begins "Organizations and individuals have recently had to contend with particularly vexing computer attacks. The most notable is Code Red, but potentially more damaging are Code Red II and SirCam. Together, these attacks have infected millions of computer users, shut down websites, slowed Internet service, and disrupted businesses and government operations. They have already caused billions of dollars of damage, and their full effects have yet to be completely assessed. Code Red and Code Red II are both "worms," which are attacks that propagate themselves through networks without any user intervention or interaction. Both take advantage of a flaw in a component of versions 4.0 and 5.0 of Microsoft's Internet Information Services Web server software. SirCam is a malicious computer virus that spreads primarily through E-mail. Once activated on an infected computer, the virus searches through a select folder and mails user files acting as a "Trojan horse" to E-mail addresses in the user's address book. In addition to spreading, the virus can delete a victim's hard drive or fill the remaining free space on the hard drive, making it impossible to save files or print. On July 19, 2001, the Code Red worm infected more than 250,000 systems in just nine hours, causing more than $2.4 billion in economic losses. SirCam is allegedly responsible for the leaking of secret documents from the Ukrainian government. U.S. government agencies do not have an effective information security program to prevent and respond to these attacks and often lack effective access controls to their computer resources and consequently cannot protect these assets against unauthorized modification, loss, and disclosure. However, several agencies have taken significant steps to redesign and strengthen their information security programs. Also, Congress recently enacted legislation to provide a comprehensive framework for establishing and ensuring the effectiveness of information security controls over information resources that support federal operations and assets."

Language

Item Type

Identifier

Unique identifying numbers for this text in the Digital Library or other systems.

Collections

This text is part of the following collection of related materials.

Government Accountability Office Reports

The U.S. Government Accountability Office (GAO) is an independent, nonpartisan agency that works for the U.S. Congress investigating how the federal government spends taxpayers' money. Its goal is to increase accountability and improve the performance of the federal government. The Government Accountability Office Reports Collection consists of over 13,000 documents on a variety of topics ranging from fiscal issues to international affairs.

What responsibilities do I have when using this text?

When

Dates and time periods associated with this text.

Creation Date

  • August 29, 2001

Added to The UNT Digital Library

  • June 10, 2014, 6:42 a.m.

Usage Statistics

When was this text last used?

Yesterday: 0
Past 30 days: 5
Total Uses: 52

Where

Geographical information about where this text originated or about its content.

Place Name

Publication Place

Map Information

  • map marker Automatically generated Place Name coordinates.
  • map marker Automatically generated Publication Place coordinates.
  • Repositioning map may be required for optimal printing.

Mapped Locations

Interact With This Text

Here are some suggestions for what to do next.

Start Reading

PDF Version Also Available for Download.

Citations, Rights, Re-Use

United States. General Accounting Office. Information Security: Code Red, Code Red II, and SirCam Attacks Highlight Need for Proactive Measures, text, August 29, 2001; Washington D.C.. (digital.library.unt.edu/ark:/67531/metadc289571/: accessed November 24, 2017), University of North Texas Libraries, Digital Library, digital.library.unt.edu; crediting UNT Libraries Government Documents Department.