Protection busting Bagle virus strikes

Thursday, 29 April 2004 19:03 EST

The latest version of the Bagle virus attempts to turn off nearly 300 antivirus processes it finds running on infected computers. Sophos alerted users yesterday to Bagle-AA, which is also known as Bagle-AB and Bagle-Z, advising it had already received many reports. Trend Micro had issued a yellow alert for its customers. In common with its predecessors, this latest Bagle arrives as an email with short texts in the subject and an attachment. If run, the attachment generates a dialog box with the message 'Can't find a viewer associated with the file'.

The worm harvests email addresses from the system to build email messages in which it sends itself on and places copies of itself in any folders with 'shar' as part of the name. It copies itself here under filenames that might tempt peer-to-peer users into uploading it.

Read Full Story

News

Next-Gen Bank Trojans Are Upon Us
Jun 23, 2006, 09:54 EST

Yet Another Government Labtop Stolen
Jun 23, 2006, 09:52 EST

Wi-Fi hacked in 'digital drive-by'
Jun 23, 2006, 09:50 EST

Phishing with Skype
Jun 23, 2006, 06:35 EST

Most Technology Companies Have Data Losses
Jun 23, 2006, 04:51 EST

What cross-site scripting isn�t
Jun 23, 2006, 04:50 EST

Secure Your Data With A Fingerprint
Jun 22, 2006, 13:04 EST

Sponsors:
Is your network open to attack? Find out with the #1 sold network security scanner: GFI LANguard Network Security Scanner! Download your FREE trial version today.	Check your website security with a FREE website security audit by Acunetix. Audit your web applications for SQL injection, cross site scripting & more with Acunetix Web Vulnerability Scanner	Software security section is sponsored by GFI, a leading developer ofnetwork security, content security and messaging software - Free trial!


Copyright � IT-Observer.com 2000 - 2006	Privacy Policy \| RSS Feeds