tomwarren Veteran Posted January 22, 2003 Veteran Share Posted January 22, 2003 Online betting firm bet365 has apologised after sending out a copy of the Avril Lavigne worm to punters on its mailing list last night. The embarrassing security breach occurred by accident during a process to decommission a Linux box formerly used by the company to run its mailing list. In normal operation the box prevented external SMTP (mail) connections, according to techies at bet365's Stoke-on-Trent offices. However when this box was rebooted, a mistake in firewall rules meant external mail was let in. Some external mail turned out to be copies of the Avril Lavigne worm (aka Avril, Naith or Lirva - AV vendors can't agree a name), sent to the mail server by subscribers to the list already infected with the bug. Because of the now, exposed insecure configuration of the mail server these infected emails subsequently propagated on the list. Source: http://212.100.234.54/content/56/28979.html Link to comment Share on other sites More sharing options...
Recommended Posts