online security computer security vulnerabilities information security
pix Xatrix Security
 
pix
Main
Security
Downloads
Forum
Free e-books
Security
Advisories
Vulnerabilities
IT News
Virus Central
Services
Advertise
Newsletter
Shop
Search
Wap-PDA/mobile
Other
Affiliates
Contact
RSS feeds
Computer, Online and Information Security News

Storm worm: again.


By: Nikola Strahija on August 7, 2007

The Storm virus is in essence a very simple worm that delivers a malicious payload. The Worm is spread via email with two attachments, an encrypted zip file and an image.

The image is the password required to un-zip the malicious payload which claims to be a patch for a new vulnerability. As the payload is hidden inside an encrypted archive, it is very difficult for anti-virus software to detect it and block the email.

Once a user is infected the computer joins a p2p network allowing files to be easily transferred to other hosts. As would be expected the machine also becomes a botnet zombie allowing full remote control of the machine. By standard, the worm spreads by emailing itself to all addresses in the victims address book.

Adam Swidler, an expert from Postini (www.postini.com), said that before Storm worm appeared daily they have been blocking around 1 million email viruses. On 24th of July they've blocked 46.2 million viruses, out of which 99% were identified containing the Storm virus.

The worrying thing is that this virus (like most) relies on user stupidity. Therefore, it has been very successfull.
Xatrix Security
Show printable version  Show printable version  |   Send this article to a friend  Send this article to a friend  
Latest information, online and computer Security News
Fix for the recent Skype Crash  (May 26, 2011)
Hacking Facebook as Easy as 1,2,3!  (Oct 26, 2010)
Unreleased ‘Hackers Wanted’ Movie Lea...  (May 22, 2010)
Hack Attack: Get Windows XP SP3 Throu...  (Nov 29, 2007)
TPB files charges against media compa...  (Sep 22, 2007)
Latest Vendor Advisories
Firefox vulnerabilities
Ruby safe-level vulnerability
Seamonkey critical security vulnerabilities
Drupal several remote vulnerabilities
Kernel local race condition
  Our Services     Information     Our Online Shop     Community Forum Topics
  Free weekly Newsletter
Advertise on Xatrix
Monthly News Archive
Community Forum		   Impressum/about
Contributing
Newsletter archive
Latest bugs		   Top sellers
New Items
Books
Software		   Dow Touches 13000 b...
Boots Drugs Canada
i received this ing...
RM Tutor 5 Download...
Our Privacy Policy | Contact Us
Powered by TiP / Rapid IT | HITB.org
All content on this website is property of Xatrix Security if not noted otherwise.
Copyright 2000 - 2011 Xatrix Security
Get news on your PDA or mobile phone Latest events Search our extensive database Get the latest books and software Download the latest tools Contact Us Advertise on Xatrix Security