Jay Munro

The past week has almost had a dance rhythm – Bagle Bagle, Netsky, Netsky, Bagle, Bagle, Mydoom, cha cha cha. One after another, Bagle, Netsky and Mydoom have been competing to infect your desktop. Over the weekend and throughout the week weve seen been more than a dozen versions of these worms. W32/Bagle.J-mm and W32/Bagle.K-mm, […]

When it rains it pours. Wednesday Feb 25th brought a new version of Netsky. Similar in operation to Netsky.B, but with a wider pool of message, subject line and attachment possibilities, W32/Netsky.C-mm jumped to a medium threat on Symantec, McAfee and Sophos charts, and to a full scale alert with TrendMicro by Thursday afternoon. Not […]

The only thing scarier than this viruses name is its potential for damaging millions of PCs. What a week! W32/Bagle.B-mm started off the week with a bang, spreading with Sobig.F like speed, hitting a 1-in-16 virus-to-message ratio at MessageLabs, but quickly petering out as word got around. The easy to remove, Bagle.B,like its January predecessor, […]

On Tuesday February 10th, Microsoft released three new security updates to patch new vulnerabilities, one of which is catching a lot of attention. Security Update MS04-007 is rated as critical because it has the potential to leave a user of Windows NT, 2000, XP or 2003 Server open to an attack that could result in […]

Breaking Virus News On February 9th, several antivirus vendors reported the appearance of DoomJuice.A, also known as W32.HLLW.DoomJuice.A, WORM_DoomJuice.A, and Win32/DoomJuice-A. Apparently the work of the author of MyDoom.A, DoomJuice.A spreads by exploiting the backdoor on MyDoom.A infected machines. Once installed on the victims machine, it launches a DoS attack on www.microsoft.com. The worm propagates […]

The new W32/MyDoom.B-mm virus adds another twist to the MyDoom story. In addition to switching the DNS attack to Microsofts web site, it uses a standard mechanism in Microsoft Windows to block a users access to antivirus sites. MyDoom.B overwrites the existing Windows Hosts file, normally empty, with a file that blocks the real addresses […]

A powerful worm virus known variously as W32/Novarg.A, W32/Shimg, W32/Mydoom, or W32/Mimail.R is devastating personal and corporate e-mail systems across the globe. This fast-moving mass mailer Internet worm apparently started spreading on the popular peer-to-peer file-sharing application, Kazaa, and has now moved to e-mail. The virus will overwrite certain system files, e-mail itself to every […]

W32/Yaha.E-mm is No Laughing Matter So far, 2004 is progressing with no surprises or major security problems. Of course were not even halfway through January, so dont get too comfortable. The destructive W32/Nachi/Welchia worm is supposed to be removing itself with the New Year, but may still be living in machines that have not been […]

Tenacious W32/Sober.c-mm Attacks A New Year is a perfect time to set goals and make resolutions. Last year taught us to be vigilant in keeping both our operating system and antivirus products up to date. August, 2003, will be remembered as the worst malware month to date, with Klez.H, Blaster, Sobig.F and other viruses and […]

While antivirus vendors have reported several new viruses and malicious attackers in the past week, we have not seen any new large scale outbreaks. However, the ghosts of virus past are still with us—Klez, Blaster, Swen, Bugbear, Dumaru, Mimail, and WelchiaNachi all haunt the top ten. According to virus analysts, the WelchiaNachi worm has only […]