Nimda & Yahoo

Well It looks as if the Yahoo Corporate network is infected.

hilla.corp.yahoo.com - [19/Sep/2001:11:22:10 -0500] “GET /scripts/root.exe?/c+dir HTTP/1.0” 404 280 “-” “-”

If anyone from Yahoo is reading this list you might want to start scanning systems.

We are already working on it. We pushed out virus updates yesterday and have started tracking/killing all nimba flows. Damn thing spreads too quickly.

Thanks for your concern.

craig
Yahoo! Inc.
Network Engineer
Y!Messenger: cholland