Go to the Softpedia homepage


NEWS CATEGORIES:



NEWS ARCHIVE >>
SOFTPEDIA REVIEWS >>
Home / News / Security

Security

Win32.Bagle.fy Sends His Love

Another "I Love You" worm

By Marius Oiaga, Technology News Editor

23rd of June 2006, 14:03 GMT

Adjust text size:


Several online security companies among which: Sophos, MicroWorld, PandaLabs si Kaspersky Lab have reported a new version of the infamous Bagle worm. This time the "I love You"
message carries the Win32.Bagle.fy version of the worm in a password protected .zip archive.

Win32.Bagle.fy uses its own SMTP (Simple Mail Transfer Protocol) engine to spread and has no less than 118 randomly generated names that it will use as senders for "I love you" e-mails. The worm is not acting on his own; other variants of the Bagle family, JN, JO, JP, and JQ were also detected. The e-mails invariably contain a password and a protected .zip file and the user is invited to open the archive using the provided piece of code. Once executed, the worm will lower the security level of the compromised computer and will begin downloading malware from no less than 99 sites in Poland, Russia and the Check republic.

"It's always a tendency of the human psyche to open up a protected secret and nobody knows it better than the Virus writer," said Govind Rammurthy, CEO, MicroWorld Technologies. "Now when you club that penchant with a message that says 'I love you', coming from a rather common name, the whole thing adds up to the temptation and smoothly gets you into its vicious design. This is smart Social Engineering with a heady mix of emotional ploys."


Rating:
Good (3.5/5) 7 vote(s) so far    

Read by 1,279 user(s) | Add comment | Link to this article
Subscribe to news | Print article | Send to friend

© Copyright 2001-2008 Softpedia
Contact:

 

 

SEARCH THE NEWS ARCHIVE :




Today's News | Yesterday's News | News Archive


MORE RELATED ARTICLES:


Microsoft Warns of Fake WinLogon Service Patch

Yahoo Mail Worm Running Wild

Worm Targets Google's Orkut

Doombot.k Worm Attack via "Abuse" E-mail

AJAX Is An Open Door to Online Attacks

Trojan Found Hosted on Google

"NUDE World Cup!"

User opinions:

No user comments yet.
Be the first to express your opinion using the form below!

Share your opinion:

Your Name:
Your Email Address:
(will not be used for commercial purposes)
Solve this to prove you're not a bot: =
Your review/opinion:

 






SUBMIT PROGRAM   |   ADVERTISE   |   GET HELP   |   SEND US FEEDBACK   |   RSS FEEDS   |   ENTER NEWS SITE   |   ENGLISH BOARD   |   ROMANIAN FORUM
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and the Softpedia™ logo are registered trademarks of SoftNews NET SRL.		 Copyright Information | Privacy Policy | Terms of Use | Update your software | Archive