Bill at Microsoft is Sobig - New Virus Spreading Widely
Posted on 02.06.2003
Sophos has today warned of a new computer virus spreading widely across the internet, sometimes posing as an email from Microsoft's Bill Gates.

The Sobig-C mass-mailing worm spreads via email - forwarding itself to email addresses found on the infected computer's hard drive - and network shares.

When forwarding itself on to other computer users the worm spoofs the "From:" field either using addresses found on the computer's hard drive or "bill@microsoft.com".

Infected emails contain subject lines such as "Re: Movie", "Re: Approved", or "Re: Your application" and contain the message "Please see the attached file". The worm can use a number of different attachment names including screensaver.scr, movie.pif and documents.pif.

"Many users are cautious of EXE and VBS files which arrive in their inbox, but may not realise that PIF and SCR files are equally capable of containing viruses," said Graham Cluley, senior technology consultant for Sophos Anti-Virus. "Businesses should automatically block all executable code at the email gateway - it's the easiest way to avoid infection by a brand new email-aware worm."

Sophos recommends companies consider blocking all executable code at their email gateway. It is rarely necessary to allow users to receive programs via email from the outside world. There is so little to lose, and so much to gain, simply by blocking all emailed programs, regardless of whether they contain viruses or not.

Further information about W32/Sobig-C and how to protect against it can be found at: http://www.sophos.com/virusinfo/analyses/w32sobigc.html





Spotlight

Cloned, booby-trapped Dark Web sites steal bitcoins, login credentials

Apart from being a way for dissidents and journalists to do their business without being spotted and identified by "the powers that be", the Dark Web is also a place where criminals sell and buy illegal wares and services and, apparently, where they also get robbed by scammers.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Jul 3rd
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //