I have a theory about worm/virus attackers: after windows update patches are released, the attackers look at the patch and find the reason windows released it in the first place. Then, they make the exploit and somehow release it, knowing that there are many end users who don't update Windows. Of course, all an end user needs to do to prevent the attack or fix it, they would need to update Windows. I never seem to receive these worms because I download patches -- which the worms come a couple weeks after the patch is released.

Tell me, what do you think? Does this theory sound possible?

maybe not... I know the MSBlaster worm exploited a vulnerability that was not previously patched. They had to make a patch after the worm was released. And some of the others too, MyDoom, NetSky etc...

I think its just more an act of opportunity. They hear of a way to break in and know many wont follow the suggestion to fix it and they use that method. Its like if Dodge were to announce tomorrow that if you kick the front left tire and tap the windshield 3 times the car will unlock and auto startup but you could fix it with a simple chip that has to be installed. I promise within hours or days thousands of dodge car would be reported stolen because they want to take advantage before the issue gets fixed or hoping that the owner wont/didnt update yet.

I have said many times in this forum, these guys who write these exploits arent smart people for the most part. They can only act when someone lays out the blueprint in front of them. They are those kids that could never put together legos and make them look like anything remotely like what was on the box.

That's not a theory. It's known and publicly discussed that patches are reverse-engineered to find exploits.

i think sasser was made after the patch was released, as is regularly install critical updates,
and when sasser started spreading, and went to check if any updates were avaible, microsoft update showed my computer was upto date

my theory on it is that kids get borred easily. most of the times microsoft fixes it and patches it, and they just change the code around a little to go back into it. I Suggest we stop patching windows and start welding it.