Microsoft - faith no more
Well here we go again. We are suffering through yet another e-mail-borne virus (this one called Novarg) whose infection has reportedly trumped out all others in the infamous history of malicious computer code.
Was the vector some l337 0-day 'sploit? Nope. Was it a complex multi-layer program leveraging several unpatched vulnerabilities? Nope. It was -- wait for it -- an executable attachment in an e-mail. What genius! The author of Novarg (or MyDoom, or whatever you want to call it) really put his noodle to the test when he cooked this one up, huh?
I would like to think that in this day and age people would know better than to open executables in an e-mail. I'd also like to be able to flap my arms and fly to the moon. Opening attachments in e-mail is one par with group needle-sharing after having unprotected sex in a Third World orgy. Yet, with an estimated 30 percent [peak] of world-wide e-mail traffic being Novarg, it is clear that millions are willing to blindly point-and-click their way into infection while a tempest of white noise rages in the part of their brain where conscious thought should be.
By Tim Mullen at SecurityFocus.
[ Read more ]
- Software: MyDoom Removal Tool
- Virus News: Novarg: New Worm - New Epidemic (28 January 2004)
- Virus News: Mydoom Worm Spreading Fast, Sophos Warns (27 January 2004)
- Virus News: New "Mydoom" Worm Launching a World-Wide Attack (27 January 2004)
- Virus News: Central Command Warns of New Worm Named Worm/MyDoom (27 January 2004)
- Review: Viruses Revealed (28 April 2003)
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.