By Susan B. Shor TechNewsWorld
01/12/05 11:12 AM PT
The good news, Graham Cluley of Sophos said, is that Wurmark-D is not making much of a mark. "It's certainly not spreading rapidly -- we've only had a handful of reports. The fact that it has such a visual payload probably means that it is less likely to spread than some of the other viruses that are out there," he said.
Think you have to compromise on security to save on costs? Think Again. Trend Micro™ Enterprise Security, powered by the Trend Micro Smart Protection Network™, can lower your content security management costs by up to 40%. Find out just how much you’ll save with our TCO Impact Calculator.
That New Year's greeting with a group of naked men and women spelling out
Happy New Year with their bodies could lead to more than just trouble with a
significant other. Security firm Sophos has discovered a worm hiding in the
photo attachment and named it Wurmark-D.
"The virus spreads using a couple of different e-mail subject lines with
an attached ZIP file. If the user runs the program inside the ZIP they
get infected," Graham Cluley, senior technology consultant for Sophos, told
TechNewsWorld.
Worm Acts While Viewer's Distracted
As a recipient is viewing the image, the virus installs itself on the
computer.
The virus tries to shut down any antivirus software it finds. It
also harvests e-mail addresses from the computer and forwards itself to the
contacts using its own e-mail engine.
The worm is also called W32/Wurmark-D or W32/Mugly.gen@MM.
The good news, Cluley said, is that Wurmark-D is not making much of a mark.
"It's certainly not spreading rapidly -- we've only had a handful of
reports. The fact that it has such a visual payload probably means
that it is less likely to spread than some of the other viruses that
are out there," he said.
Just Another Worm
The worm is nothing unusual as malware goes.
"It's just one of many e-mail-aware viruses that travel via a malicious
attachment," Cluley said.
He then reiterated a caution all computer users
should heed. "It's really important that people learn to resist
launching unsolicited e-mail attachments."
So far, 2005 has not brought a major malware attack, but that does not mean
that computer users should let down their guard.
"So far it [malware activity] seems pretty normal. There have been
no new major outbreaks yet this year, but old viruses from 2004 are still
spreading successfully and causing a nuisance, and new viruses are being
released all the time," he said.
New Worm Attacks Mobile Phones with Symbian OS January 11, 2005
The problem with the new worm, known as Lasco, is mainly that it drains resources from infected smart phones because the worm constantly searches for other Bluetooth devices it can infect. Users will likely only discover the infections when they notice batteries being drained quickly.
Related Stories
Imagine a World with No Security 'Ifs' January 12, 2005
Organizations are urged to look for advanced automated endpoint security solutions that provide enhanced protection. Such solutions ensure that your users connect only to known and authorized wireless access points. They provide flexibility and enhance productivity while safeguarding data.
Developer Raps Linux Security January 11, 2005
Brad Spengler of grsecurity characterized the Linux Security Model, or LSM, as merely a way to allow the National Security Agency's SELinux to be used as a module. "The framework is unfit for any security system that does anything remotely innovative, such as grsecurity and RSBAC [Rule Set-Based Access Control]," he declared.
E-Mail Etiquette in Business Makes a Difference January 11, 2005
In the fast moving global economy, e-mail offers the certainty and convenience of being able to communicate effectively at any hour of the day or night. However, it is this ease and accessibility that allows e-mail to be used in odd or unprofessional ways.
Santy Worm Variants Expand to AOL, Yahoo December 28, 2004
The variants, like the original Santy worm, target Web bulletin boards designed with the open-source PHP scripting language. However, the Santy.C and Santy.E variants target different parts of the PHP code, using programming flaws to gain entry rather than a single security flaw.
Ken Beer of Tumbleweed on E-Mail Authentication December 25, 2004
"Sender authentication can solve a lot of the false positive problems," Ken Beer, product management director at Tumbleweed Communications, told TechNewsWorld. "Today, a lot of the inbound filters will use the concept of whitelists and blacklists. What spammers do is just take legitimate e-mail addresses and stick them in the 'from' address in a message header."
Related News Alerts
More by Susan B. Shor
Salesnet President Jonathan Tang Ready to Take On Salesforce.com February 07, 2006
"We think it's Salesnet's time now. We've been around since the beginning, we've been lying low, but you're going to start to see more of us. We've done it through organic growth and happy customers. We continue to focus on customers."
Comcast Follows Time Warner in Offering 'Family' Programming Tier December 23, 2005
"The demand for this type of tier is coming from the FCC and Christian conservatives. It has nothing to do with legitimate consumer demand," Todd Chanko, senior analyst at Jupiter Media, told the E-Commerce Times.
High-Risk Flaw Found in Symantec's Software December 22, 2005
"Part of the significance of this vulnerability announcement is that your machine can be exploited without you needing to do anything at all. You don't even have to open an e-mail or attachment, and this happens with the default configuration of the product," said Forrester Research senior analyst Michael Gavin.
Headline Feeds
Talkback: 
