Print
Discuss
Send to friend
RSS feedsYet another version of the Bagle virus has been spotted in the wild, bringing the number of variants discovered today to four and prompting security experts to warn that this could mark the start of a serious wave of virus attacks.
Grisoft, makers of the popular AVG Anti-Virus products, confirmed that its labs had detected Bagle.BM, joining other variants BB, BD and BE reported earlier today.
Bagle.BM is a 34KB Windows executable file. It is attached to messages which come with an empty subject line. The body contains the words 'new price' or just 'price'.
When a user opens the attachment it activates the worm, which copies itself to the Windows system directory and registers this file in the system registry.
Bagle.BM also terminates processes designed to protect the machine and the local network. This leaves the infected PC vulnerable to further attacks by malicious code, Grisoft warned.
"The Bagle BM variant is one of several new strains seen by our labs this morning," said Michael Foreman, partner at AVG UK.
"With several months since the last major outbreak, it looks like we may be entering a new period of increased virus activity.
"We are seeing an increase in the amount of malware sent by spammers. It has become the preferred method for expanding their network of infected machines used to deliver spam messages."
See also:
Bagle, Zafi and Netsky coders thought to be working together 08 Mar 2005
Security firm ups risk assessment as virus onslaught gathers pace 02 Mar 2005
The latest wave of cyber-crimes and acts of vandalism have demonstrated once again that many systems are still vulnerable to attack. 15 Apr 2004
The term 'spam' may have been popularised by a Monty Python sketch but, in the electronic world, junk mail is far from a laughing matter. 06 Jun 2003All Enterprise Security Technology
del.icio.us
Digg this
reddit!
