Monday, December 22, 2014
Search
  
Submit your own News for
inclusion in our Site.
Click here...
Breaking News
Samsung Introduces SE790C Curved Monitor
Chinese Motion-sensing VR Glasses Coming On Kickstarter
Kodak Returns To CES With Consumer Product Line
North Korea Suggests Joint Inverstigation With U.S. Over Sony Hacking
T-Mobile to Pay $90 Million To Settle Case With FCC
New Trojan Targetted Banks Wordlwide
FBI Confirms North Korea Was Behind Sony Hack
Apple Responds To BBC's Allegations Over Working Conditions In Chinese Factory
Active Discussions
Digital Audio Extraction and Plextools
Will there be any trade in scheme for the coming PSP Go?
Hello, Glad to be Aboard!!!
Best optical drive for ripping CD's? My LG 4163B is mediocre.
Hi All!
cdrw trouble
CDR for car Sat Nav
DVD/DL for Optiarc 7191S at 8X
 Home > News > General Computing > 'eBay' ...
Last 7 Days News : SU MO TU WE TH FR SA All News

Tuesday, October 26, 2004
'eBay' worm starts to spread


An email that claims to have been sent by online auction company eBay's webmaster contains a worm that attacks poorly-protected network drives.

The Myfip worm was first detected more than a month ago but email security firm Messagelabs said it has noticed the worm is starting to spread. The company expects Myfip to be difficult for antivirus software to detect because it has been compressed using an uncommon packing utility.

Virus authors have a choice of different utilities to compress and encrypt their malware. Inexperienced malware coders - 'script kiddies' - often use one of the popular packing programs available freely on the Internet. But Messagelabs has warned that Myfip uses a packer that it has not seen before, which could indicate that the virus writer created one specially.

According to Messagelabs, "Myfip uses a packer previously unseen in email virus distribution. The use of an uncommon packer could make it more difficult for antivirus software vendors to identify and protect against the malicious code within."

Antivirus firm Symantec's Security Response site said Myfip searches an infected computer for any network directories and attempts to copy itself to those directories with a file-name "Iloveyou.txt.exe".

If the network directory is password protected, Myfip attempts to log in as the administrator using a number of common passwords, which are listed on Symantec's site.

The company reports that the worm is "easy" to remove.

Even if antivirus scanners have a problem spotting the new worm the badly worded email should make any potential victims somewhat suspicious.

Myfip arrives in an email with the subject "hi, [recipient], I'm webmaster of eBay.com, and we raise a research in our Website".

The main body of the email asks the recipient to take part in a "Multiple Item Auction" with the chance of winning a prize.

"If you're the winner of Multiple Item Auctions, you can get the following thing? 1.a notebook that worth 18000$... 2.a camara [?] worth 1000$".


Previous
Next
Intel Continues To Accelerate 64-Bit Capability Across Product Lines With Platform For Embedded Storage Solutions        All News        10,118 Points!! ASUS nForce4, SLI Motherboard Shatters 3DMark05 Record
Security risk in new Google search tool     General Computing News      Hard Disk Drives Expected to Move Well Beyond the PC Reports In-Stat/MDR

Source Link Get RSS feed Easy Print E-Mail this Message

Related News
Researchers Identify New iOS Vulnerability
Dropbox, WordPress Used To Spread Malware
Microsoft Says Viruses Are Back On The Rise
First Targeted Attack Utilising Malware for Android Devices Reported
Cyber Attack Targets Nato, Government Websites
Stuxnet Roots Found Back in 2005
Java Exploit Behind "Red October" Cyber Attacks
FTC Warns Small Businesses Of Spam Email
Kaspersky Says 'Red October' Virus Has Been Targeting Diplomatic and Government Agencies
Kaspersky Discovers New version Of Flams Virus
Microsoft Warns Of New IE Security Breach
Microsoft Disrupts Nitol Botnet

Most Popular News
 
Home | News | All News | Reviews | Articles | Guides | Download | Expert Area | Forum | Site Info
Site best viewed at 1024x768+ - CDRINFO.COM 1998-2014 - All rights reserved -
Privacy policy - Contact Us .