Well here we go again. We are suffering through yet another e-mail-borne virus (this one called Novarg) whose infection has reportedly trumped out all others in the infamous history of malicious computer code.

Was the vector some l337 0-day 'sploit? Nope. Was it a complex multi-layer program leveraging several unpatched vulnerabilities? Nope. It was -- wait for it -- an executable attachment in an e-mail. What genius! The author of Novarg (or MyDoom, or whatever you want to call it) really put his noodle to the test when he cooked this one up, huh?

I would like to think that in this day and age people would know better than to open executables in an e-mail. I'd also like to be able to flap my arms and fly to the moon. Opening attachments in e-mail is one par with group needle-sharing after having unprotected sex in a Third World orgy. Yet, with an estimated 30 percent [peak] of world-wide e-mail traffic being Novarg, it is clear that millions are willing to blindly point-and-click their way into infection while a tempest of white noise rages in the part of their brain where conscious thought should be.

By Tim Mullen at SecurityFocus.

[ Read more ]

Related items

• Software: MyDoom Removal Tool
• Virus News: Novarg: New Worm - New Epidemic (28 January 2004)
• Virus News: Mydoom Worm Spreading Fast, Sophos Warns (27 January 2004)
• Virus News: New "Mydoom" Worm Launching a World-Wide Attack (27 January 2004)
• Virus News: Central Command Warns of New Worm Named Worm/MyDoom (27 January 2004)
• Review: Viruses Revealed (28 April 2003)