Panda Software Warns Users of Sobig.D Worm
Posted on 18.06.2003
The Sobig big worm is news again. This time Panda Software's Virus Laboratory has detected the appearance of Sobig.D, a new variant that is designed to spread rapidly.

Like its predecessors, Sobig.D sends itself out via e-mail to all the e-mail addresses in files with TXT, EML, HTM*, DBX and WAB extensions it finds on the affected computer, using its own SMTP engine in order not to leave any traces of its actions. The subjects and attached files in the e-mail message carrying the worm use what has been dubbed social engineering to trick the user into opening it. These are selected from a list of options, which can be consulted at Panda.

Sobig.D can also spread across local networks. In order to do this, it copies itself to the Windows startup directories in the computers connected to the same network as the affected computer.

Finally, Sobig.D creates several entries in the Windows Registry in order to ensure it is run whenever the computer is started up.





Spotlight

Cloned, booby-trapped Dark Web sites steal bitcoins, login credentials

Apart from being a way for dissidents and journalists to do their business without being spotted and identified by "the powers that be", the Dark Web is also a place where criminals sell and buy illegal wares and services and, apparently, where they also get robbed by scammers.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Jul 3rd
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //