Security Bytes

Apr 12 2007   2:32PM GMT

SANS tracking possible new worm



Posted by: David Schneier
Tags:
Information Security Threats

The folks at The SANS Internet Storm Center say they’re seeing indications of a new worm making the rounds Thursday. The ISC handlers have gotten a slew of emails with varying subject lines promising a patch for an unnamed new worm. The messages contain two attachments: a ZIP file that is password-protected, and an image that includes the password for the ZIP archive. Among the subject lines of the emails are:

“Worm Alert!”
“Worm Detected”
“Virus Alert”
“ATTN!”
“Trojan Detected!”
“Worm Activity Detected!”
“Spyware Detected!”
“Dream of You”

Not very original, but as we’ve seen in the past, it often doesn’t take much in the way of guile to entice users to open malicious emails. The name of the ZIP file looks to be in the form of “patch<random four-digit number>.zip” the ISC said. We’ll keep an eye on this one.

UPDATE: Senior News Writer Bill Brenner outlined the worm outbreak and sheds light on how spammers are using it to create zombie machines.

1  Comment on this Post

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when other members comment.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Gonzo
    Sounds like a list of things the clowns on "24" might say when one of their systems goes down.
    0 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: