Archive for January 22nd, 2007

Beware the Storm Worm

Posted in All Posts, Email Security, Exploits, Malware, Online Security, Root kits, Scams, Security Tools, Wired Network Security, Wireless Network Security on January 22nd, 2007

A massive storm that swept across Europe last week…

And then in it’s wake was a storm across the Internet – in the form a series of virus infected emails.

And reference our previous Post, clearly there is a serious lacking of “Street Smarts” among computer users because this virus spread like wildfire.  Check out the F-Secure video post on YouTube, and see for yourself.

All users are advised to update their anti-virus programs and use caution when opening email, and especially email that refers to current events in the news* and induces the recipient to open the attachment.  Some examples:

230 dead as storm batters Europe.
A killer at 11, he’s free at 21 and…
British Muslims Genocide
Naked teens attack home director.
U.S. Secretary of State Condoleezza…
  Russian missle shot down Chinese satellite
  Russian missle shot down USA aircraft
  Russian missle shot down USA satellite
  Chinese missile shot down USA aircraft
  Chinese missile shot down USA satellite
  Sadam Hussein alive!
  Sadam Hussein safe and sound!
  Radical Muslim drinking enemies’ blood.
  U.S. Secretary of State Condoleezza Rice has kicked German Chancellor Angela Merkel
  U.S. Southwest braces for another winter blast. More then 1000 people are dead.
  Venezuelan leader: “Let’s the War beginning”.
  Fidel Castro dead.
  Hugo Chavez dead.

The virus package that this email can load on your computer is nasty.  But users of infected computers may not even be aware that they are infected
Please note that this series of virus infected emails has a variety of subject lines and may contain several different attachments.

For more information, check out the F-Secure Blog.  They have posted a video of the infection spreading across the globe, and also provide detailed information as to the contents of this virus infected series of email.

* The latest variants have branches out into any number of subject lines:

  So in Love
  Happy World Religion Day!
  Most Beautiful Girl
  Someone at Last
  I Believe
  The Dance of Love
  The Miracle of Love
  All For You
  Vacation Love
  I am Complete
  Wrapped Up
  Moonlit Waterfall
  A Little (sex) Card
  A Special Kiss
  Hugging My Pillow
  Safe and Sound
  You’re Soo kissable
  A Romantic Place
  Breakfast in Bed Coupon
  For You
  I Love You So
  Safe and Sound
  Want to Meet?
  We Are Different
  We Have Walked
  You Asked Me Why

Please note that this virus may also have a rootkit component that most anti-virus programs are not able to detect or remove.  F-Secure’s Blacklight rootkit detector can detect and remove this rootkit.  This tool should be run on any computer that has become infected.  Blacklight can be downloaded from F-Secure via the following link: 

http://www.f-secure.com/blacklight/

- Practice Safe Computing

Comments Off

_____________________________________________________________________________________________________________