Two days after the new, fast spreading W32.Slammer worm wreaked havoc on the Internet, organizations in the U.S. that were affected say that good technology and prompt reaction to the emerging attack prevented more widespread disruption.
Stories abound of network slowdowns in the hours following the first appearance of the worm early Saturday morning.
Blocking ports 1433 and 1434 on affected machines eventually brought Slammer under control, Halamka said.
Physician Craig Gordon arrived at
Gordon and the rest of the staff at BIDMC fell back on lessons learned from previous virus outbreaks and computer outages, using teamwork and an older paper-based system to manage their patients until the clinical systems came back online a couple hours later.
"People just figured out what was up, what was down and what we could do to make the day go on. It was actually pretty extraordinary. Everybody did their job and helped each other out. It was really about as normal as it could be," Gordon said.
At
The IT staff worked to locate the source of the problem and stem the flow of traffic produced by Slammer. By
The cleanup at Northeastern was hastened by the fact that most of the institution's SQL servers had Microsoft's SQL Server Service Pack 2 or Service Pack 3 already installed. Those service packs patched the software vulnerability that was exploited by Slammer, according to Hill.
IT staff at the place where former Northeastern student Shawn Fanning wrote the original Napster application were also armed with a variety of firewalls and traffic shapers that helped spot and thwart the Slammer outbreak, according to Hill.

Sign up to receive Security Resource Alerts
A comprehensive security management solution can help you streamline, as well as grow, your current or evolving business. In this way, a strategic security approach can help you increase your competitiveness in these challenging market conditions.
Download now! »Find out how you can effectively collect, normalize and archive enterprise-wide, security-related data that is invaluable for security investigation and compliance reporting.
Download now! »This session focuses on the intersection of role management and identity compliance, and addresses the importance of identity compliance in enterprise governance and the challenges that organizations may face in achieving it.
View now! »