Advertisement
Promo

Security threats Toolkit

Warezov worm surfaces again

Tom Espiner ZDNet.co.uk

Published: 20 Apr 2007 11:59 BST

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

Security vendor Kaspersky has reported a new variant of the Warezov worm.

Mass mailings of the variant, Warezov.nf, started at 5am on Thursday, and already make up between 70 and 85 percent of malicious content in email traffic, according to Kaspersky.

Like previous variants of Warezov, the worm spreads via email, disguised as an attachment. The attachment is a Trojan that downloads the latest version of the worm from a number of websites. Once downloaded, the worm copies itself to disk and loads automatically at start-up. Warezov then harvests email addresses from the hard drive and automatically sends emails with the Trojan attached, using its own SMTP engine.

The worm is able to terminate a range of antivirus and firewall applications and also downloads malicious code from the internet without the user's knowledge. Screenshots of the virus in action have been posted on F-Secure's blog.

The last Warezov attack spread through Skype's instant-messaging network. The worm did not appear to be self-propagating, spreading instead through a URL sent to Skype users. When a user activated the URL, the worm passed the URL to the user's entire contact book.

The first variant of Warezov was reported in September last year by Symantec. F-Secure first reported its spread into Skype at the end of February.

  • Email
  • Trackback
  • Clip Link
  • Print friendlyPrint with EPSON

Did you find this article useful?
6 out of 6 people found this useful


In association with HP

Talkback

Post a comment


Full Talkback thread

0 comments

Related Links

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:





Related BlackBerry Resources

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

Authentication risks all too human

Risks to successful online banking identification and authentication using smartcards involve a mixture of human and technological factors, according to the European Network and Information... More

1 comment

Opera censors Chinese content

Opera has updated the Chinese version of its mobile browser to stop users accessing restricted content. Opera Mini was updated on Friday from an international to a Chinese version,... More

2 comments

Symantec website breached

Security company Symantec has said that one of its websites was successfully breached. Romanian security researcher 'Unu' posted details of the breach in a blog post on Monday. Unu... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters