My OpenLearn Profile

Personalise your OpenLearn profile, save your favourite content and get recognition for your learning

Create account / Sign in

Course content Course content

Gamified Intelligent Cyber Aptitude and Skills Training (GICAST)

Start this free course now. Just create an account and sign in. Enrol and complete the course for a free statement of participation or digital badge if available.

More free courses

1.1 Worms

This section is part of the amber and green pathways.

This image shows a small worm coming out of an apple.

Figure 3

Show description|Hide description

This image shows a small worm coming out of an apple.

Figure 3

Another type of self-replicating malware is the worm; like a virus it is designed to make copies of itself. But unlike a virus, which attach themselves to specific applications, a worm is a standalone application.

Worms spread through network connections, accessing uninfected machines and then hijacking their resources to transmit yet more copies across the network.

There are four stages in a worm attack:

The first stage is when the worm probes other machines looking for a vulnerability that can be exploited to copy itself to.
The second stage is to penetrate the vulnerable machine by performing the operations for exploiting the vulnerability. For example, the worm might detect an open network connection, through which it can get the remote machine to execute arbitrary instructions.
In the third stage, the worm will download itself to the remote machine, and store itself there. This is often called the ‘persist’ stage.
In the final stage, the worm will propagate itself by picking new machines to attempt to probe.

Worms were invented as a curiosity and have even been suggested as ways of testing networks or distributing software patches across a network; however their drawbacks far outweigh their benefits. Even the most ‘benign’ worm consumes resources and can affect the performance of a computer system.

This flowchart shows the stages of a worm attack. There are four overall stages, which are broken down into more detailed steps.

Figure 4 Stages of a worm attack

Show description|Hide description

This flowchart shows the stages of a worm attack. There are four overall stages, which are broken down into more detailed steps. Before the first stage, the first step indicates that the process is started by a worm / native computer. The first stage then contains these steps: Probe network; Probe other computers; Identify vulnerable computers. The second stage contains these steps: Penetrate & open network connection; Execute instructions remotely. The third stage contains one step: Download a copy of itself. The fourth stage contains the steps: Begin executing; Probe network. There is one more step after these stages which is simply: Propagate further.

Figure 4 Stages of a worm attack

Previous 1 Viruses

Next 1.2 Trojans

Take your learning further

Making the decision to study can be a big step, which is why you’ll want a trusted University. We’ve pioneered distance learning for over 50 years, bringing university to you wherever you are so you can fit study around your life. Take a look at all Open University courses.

If you’re new to university-level study, read our guide on Where to take your learning next, or find out more about the types of qualifications we offer including entry level Access modules, Certificates, and Short Courses.

Want to achieve your ambition? Study with us and you’ll be joining over 2 million students who’ve achieved their career and personal goals with The Open University.

Browse all Open University courses

My OpenLearn Profile

About this free course

Become an OU student

Share this free course

1.1 Worms