Suing Over Slammer

Suing Over Slammer
Mark Rasch, 2003-02-10

The Slammer worm was successful because thousands of users didn't patch Microsoft's security holes. Should we sue them all?

Expand all | Post comment

Suing Over Slammer 2003-02-10
Anonymous

Liability and Buffer Overflows... 2003-02-10
Nicholas Weaver

Suing Over Slammer - whom would you sue? 2003-02-10
Anonymous

Suing Over Slammer 2003-02-11
Anonymous (1 replies)

Suing Over Slammer 2003-02-11
Villy

Suing Over Slammer 2003-02-11
keydet89@yahoo.com

Is Microsoft legally responsible 2003-02-11
Sick and tired of the excuses (5 replies)

Is Microsoft legally responsible 2003-02-11
Villy.Madsen@atcoitek.com (1 replies)

Is Microsoft legally responsible 2003-02-12
Villy

Is Microsoft legally responsible 2003-02-12
RobJ (1 replies)

Is Microsoft legally responsible 2003-02-12
Sick and tired of the excuses (1 replies)

Is Microsoft legally responsible 2003-02-19
Anonymous

Is Microsoft legally responsible 2003-02-14
Anonymous

Is Microsoft legally responsible 2003-02-18
Anonymous

Fraudulent claims of loss 2003-02-11
Fra. 219

When a company publicly claims some massive dollar figure as a loss due to a security incident -- be it a break-in from a Kevin Mitnick, or a denial of service due to a worm such as Slapper, I always wonder: Is this company going to list this loss in its securities filings? Companies are required to report their financial well-being so that investors can reasonably evaluate them, and I cannot help but expect that a loss of millions of dollars due to a break-in or a leak would significantly impact most companies' bottom lines.

If companies are touting the size of their losses to the press to get sympathy, or to get sterner computer-crime laws on the books, but are not reporting these losses to their stockholders, then they are probably committing securities fraud. That's a really stupid thing to do.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/141/18096#18096