I'll second Nimda. Yes, others have since had more infection methods, but nothing was a novel or surprising as Nimda "back in the day".

My runner up has to be SQL Slammer. It was just, for lack of a better term, elegant. Tiny, UDP-based, blazing fast, and murder on network gear. On a fairly large, flat network, three infections brought the switch to it's knees.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/306/30895#30895