"Enterprises should block .zip attachments at the gateway," said Huger, "unless these types of files have a legitimate business purpose."
Additionally, Mydoom contains a backdoor that listens to commands on a series of TCP ports, said Huger. One function of this backdoor is an entry by hackers into infected systems -- attackers can use it to send and run other malicious code on the compromised machine -- but another purpose is to relay network connections, in effect adding the system to a collection of proxies for later spam and/or worm transmission.
To slam shut this backdoor, Huger advised organizations and users to block inbound TCP traffic on ports 3127 through 4000.
While many anti-virus firms have updated their software to account for Mydoom -- including Huger's Symantec -- so that the worm is automatically detected and destroyed, there are some tools available on the Internet for cleaning infected machines.
Sophos, for instance, has posted an automated removal tool on its Web site, while F-Secure also has a similar tool available.
By combining resources and expertise, the AI-Enabled ICT Workforce Consortium will offer a blueprint for how industries can adapt to an AI-dominated future.
IT leaders should heed the guidance of cybersecurity insurance providers who think businesses should prioritize security education, incident preparedness, regular internal audits, and ongoing vulnerability scanning and patching.
There are many network courses that can address your present job's priorities and help you gain the needed skills to keep pace with industry changes and new technologies.
