online security computer security vulnerabilities information security
pix Xatrix Security
 
pix
Main
Security
Downloads
Forum
Free e-books
Security
Advisories
Vulnerabilities
IT News
Virus Central
Services
Advertise
Newsletter
Shop
Search
Wap-PDA/mobile
Other
Affiliates
Contact
RSS feeds
Computer, Online and Information Security News
  Show printable version  Show printable version  |   Send this article to a friend  Send this article to a friend  

Storm worm: again.
Posted by: Nikola Strahija on August 7, 2007

Remember January? "Storm worm" ... rings a bell? There's a new variant of it in the wild.
Johannes Ullrich of the SANS Institute said "This is potentially a huge problem, It's
basically impossible to shut this thing down…
The Storm virus is in essence a very simple worm that delivers a malicious payload. The Worm is spread via email with two attachments, an encrypted zip file and an image.

The image is the password required to un-zip the malicious payload which claims to be a patch for a new vulnerability. As the payload is hidden inside an encrypted archive, it is very difficult for anti-virus software to detect it and block the email.

Once a user is infected the computer joins a p2p network allowing files to be easily transferred to other hosts. As would be expected the machine also becomes a botnet zombie allowing full remote control of the machine. By standard, the worm spreads by emailing itself to all addresses in the victims address book.

Adam Swidler, an expert from Postini (www.postini.com), said that before Storm worm appeared daily they have been blocking around 1 million email viruses. On 24th of July they've blocked 46.2 million viruses, out of which 99% were identified containing the Storm virus.

The worrying thing is that this virus (like most) relies on user stupidity. Therefore, it has been very successfull.
Xatrix Security
Show printable version  Show printable version  |   Send this article to a friend  Send this article to a friend  
Latest information, online and computer Security News
Hack Attack: Get Windows XP SP3 Throu...  (Nov 29, 2007)
TPB files charges against media compa...  (Sep 22, 2007)
Onslaught on .ORGs  (Feb 7, 2007)
OpenOffice.org insecure  (Aug 12, 2006)
Leave your laptop at home  (Aug 11, 2006)
Latest Vendor Advisories
Firefox vulnerabilities
Ruby safe-level vulnerability
Seamonkey critical security vulnerabilities
Drupal several remote vulnerabilities
Kernel local race condition
  Our Services     Information     Our Online Shop     Community Forum Topics
  Free weekly Newsletter
Advertise on Xatrix
Monthly News Archive
Community Forum		   Impressum/about
Contributing
Newsletter archive
Latest bugs		   Top sellers
New Items
Books
Software		   RMC3IENGINE - VMWar...
VMWare CC3 Server -...
C2k Commissioning CDs
On Sale New Apple i...
Our Privacy Policy | Contact Us
Powered by TiP / Rapid IT | HITB.org
All content on this website is property of Xatrix Security if not noted otherwise.
Copyright 2000 - 2010 Xatrix Security
Get news on your PDA or mobile phone Latest events Search our extensive database Get the latest books and software Download the latest tools Contact Us Advertise on Xatrix Security