The RIAA site began experiencing performance problems again this morning, although it seems to be faring somewhat better than on previous MyDoom.F trigger dates. The site index is using a text-only redirection page at www.riaa.com in an attempt to reduce the load on its server.
A dynamically updating graph of the sites targeted for DDoS by various MyDoom variants is available here.
Nonetheless, the ongoing traffic from MyDoom.F demonstrates that many computer owners continue to leave compromised machines unsecured and online. In theory, it should be somewhat easier for users to notice the activity of MyDoom.F, which deletes Microsoft Word and Excel documents. Yet it appears that many MyDoom.F victims soldier on, leaving the malware to continue its monthly DDoS activity.
Posted by Rich Miller in Performance
Your link here? Advertising on the Netcraft Blog