When a new computer worm invades the Internet, system administrators start a race. Can they patch their computers before the worm attacks? Or if a system is infected, can they patch other systems before the infection spreads out of control?
Worms are especially difficult to contain. Unlike viruses, which infect computers only through user actions such as opening an attachment, worms spread on their own by taking advantage of vulnerabilities within an operating system. Because it takes time to apply a patch to each computer in a network, administrators usually can’t repair these vulnerabilities in all their systems simultaneously. So they have to prioritize by choosing the strategy most likely to contain the epidemic.