Worm/MiMail.A is an Internet worm that spreads through e-mail by using addresses it collects from local files. It arrives with a zip file attachment, "message.zip"- this file contains the file "message.html". Using the noted security exploit within Internet Explorer, message.html will produce an executable file and run it.
The worm arrives through e-mail in the following format:
Subject: your account < account info >
I would like to inform you about important information regarding your email address. This email address will be expiring. Please read attachment for details.
Best regards, Administrator
"According to our Emergency Virus Response Team® Worm/MiMail.A is spreading globally at an alarming rate. Our preliminary virus tracking report shows that U.S. based computer users are being the hardest hit thus far, at this time 61% of the confirmed infection reports have originated in the United States," said Steven Sundermeier, Vice President of Products and Services at Central Command, Inc. "Using a newer vulnerability within Internet Explorer, as well as, creative social engineering are fueling the fire for Worm/MiMail.A."
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.