Should a worm patch or push security updates?

In this expert response, Richard Brain explains why "offensive" worms should not be used to propogate patches.

Richard Brain

Published: 08 May 2009

Should "offensive" worms be used to propagate patches? Is it safe to use code that acts like malware in order to defeat malware?

In my opinion, an 'offensive' worm should never be used to spread patches. It is a dubious practice and can create all sorts of unintended consequences.

A computer worm is normally designed to infect as many computers as possible using a number of different attack vectors, with each attack vector exploiting a certain weakness which might exist on computers -- for example, Window file shares, emails or buffer overflows in Web servers.

In carrying out the attack, it is common for the worm to replace or modify webpages with its own content so it can spread itself to more computers. The problem with all of this attacking and modifying is that websites and computers will break due to the almost infinite variation of services and webpages. The worm, when patching and modifying a website with its code, can stop the page from being displayed properly or not at all. And when attacking different vectors, it can deny service by using up resources like bandwidth -- or denying access to the service by causing it to fail.

Should a worm patch or push security updates?

In this expert response, Richard Brain explains why "offensive" worms should not be used to propogate patches.

Related Q&A from Richard Brain

Dynamic code analysis vs. static analysis source code testing

Pwn2Own results: The most secure Internet browser for enterprises

Google cloud applications: Secure enough for the enterprise?

Read more on Hackers and cybercrime prevention

active defense

counterintelligence

Attack obfuscation: How attackers thwart forensics investigations

How to defend against a DOM-based XSS attack

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO

How ITSM services on mobile devices power employees, boost service

IT salary report shows increased interest in emerging tech hubs

Can more cloud use increase business agility?

SearchSecurity

Securiti.ai wins RSA Innovation Sandbox Contest

RSA Security president: We're excited about sale to STG

RSA Conference 2020 guide: Highlighting security's human element

SearchNetworking

Cisco SecureX provides front end for all security tools

How SD-WAN 5G could optimize networks for specific applications

IEEE reveals 802 standards process and the future of Wi-Fi

SearchDataCenter

Plan for a successful ITIL implementation

Learn the main Linux OS components

New Dell EMC PowerEdge servers are built for the rugged edge

SearchDataManagement

Databricks Data Ingestion Network brings data to lakehouse

Lessons learned from Credit Karma GraphQL architecture

EnterpriseDB looks to grow market for PostgreSQL