Bugs we observed lately from our control-tower...

Welchia.B

Welchia.B revival ? Strange WebDAV Exploit observed.

MyDoom

Well, this speaks by itself to me, but it is because I've seen it so many times already.
It is a statistic of the mails handled by my smtp relay when MyDoom exploded.
Those number in the graph are not the number of virus. They represent mail sent(black) and mail received(red).
When you compare it to the previous friday (that number of mail ~2000 is just as many my relay usually sees), you realize the traffic is more than 300% than normally is !

I can't figure out this one, as in the statistics of a friend (here represented) the "wave" has arrived some days later ! ... it might have something to do with my name and email address indexed by google.... mmmm

Swen

MS Blaster

Someone's graphic found on the net

How Dshield.org showed the impact. You can see the raise in scans for port 135, not even by Blaster alone, but reinforcer by the Nachi worm immediately after.

August, 11th

August, 13th

While this is a statistic of probes from my office firewall

SQL Slammer

Other

Several other Worms have been discussed/analysed in Honeynet Project'Scan of the Month 30

This page represents the output of a joint research of different members of ITVC.