Get Started Book a Demo

Morris Worm

10th February 2020 | Cybrary Morris Worm


The Morris Worm goes down in history as the first worm in existence.  This self repeating computer program that was written by Robert Tappan Morris, a student at Cornell University, and released from MIT on November 2, 1988. According to the creator of the worm, Morris, the intention of the program was to gauge the size of the internet at the time, although it unintentionally caused a Denial of Service (DoS) for nearly 10% of the 60,000 machines connected to the internet at the time. 

The program created by Robert Morris created a bit of a stir, resulting in a Supreme Court Case. The United States v. Morris (1991) case resulted in Morris being convicted under the 1986 Computer Fraud and Abuse Act, with Morris receiving a sentence of three years in prison, 400 hours of community service and a $10,000 fine.

As an SMB Owner, what does this mean for me?

The Morris worm was the first self-replicating malicious software witnessed online.  Since then there have been dozens of similar events that costs millions and sometimes billions of dollars in damages.  As a business owner, make sure your company’s cybersecurity program includes the following protections:

  1. You Train your employees have a robust awareness program in place to train on how to spot and avoid email based phishing attacks, social engineering, and many other modern hacker attack methods.
  2. Govern your employees with policies on Information Handling, Acceptable Use of Computers, and Passwords at a minimum.
  3. Have a Risk Assessment performed on your company to understand the potential threats and vulnerabilities you face and then once you decide on a budget, create a remediation plan to begin reducing your risks to an acceptable level.
  4. Test your employees with Phishing attacks at least quarterly and preferably more often.
  5. Ensure you have Technical protections in place to protect you when your training and governance fails you and employees click on a hacker attack.  Antivirus, SPAM filtering, removing Administrator rights to your windows desktops, and deploying a Password Manager are all strong starting activities for low cybersecurity maturity companies.  As you mature you will need to add additional technical solutions to improve your protections.

Related Terms: ILOVEYOU Virus, Melissa Virus, SQL Slammer Virus

Source: Radware

To learn more about the Morris Worm, watch this short video:

Latest Blogs

Stay sharp with the latest security insights

Discover and share the latest cybersecurity trends, tips and best practices – alongside new threats to watch out for.

AI-Powered Phishing Kits Are Game-Changing, In a Very Bad Way
6th January 2026 | Blog

AI-Powered Phishing Kits Are Game-Changing, In a Very Bad Way

Phishing emails used to be easy to spot. Bad grammar. Weird links. Obvious scams. Those days are...

Read more
AI Poisoning: Fake Support Scam — AI Search as the New Attack Surface
16th December 2025 | Blog

AI Poisoning: Fake Support Scam — AI Search as the New Attack Surface

Cybercriminals always follow Internet eyeballs. Not literally, but figuratively. And today's eyeballs are...

Read more
CISA Details an Emerging Mobile Spyware Alert
9th December 2025 | Blog

CISA Details an Emerging Mobile Spyware Alert

Active Attacks on Messaging Apps The Cybersecurity and Infrastructure Security Agency (CISA) recently issued...

Read more
Get Started All Posts