Computer virus
Bagle now has more than 30,000 distinct variants
R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Bagle still the malware boss

Three years on and email worm still going strong

Clement James, vnunet.com 09 Mar 2007
ADVERTISEMENT

Veteran malware Bagle continues to defeat most antivirus solutions almost three years on by using a cleverly devised distribution method, security experts warned this week.

The email worm has begun to use key offensive strategies to maximise propagation and slip under the radar of traditional antivirus defences, according to a report from security firm Commtouch.

Bagle, also known as Beagle, is one of the longest running examples of email-borne malware.

The worm has seen continued success from its high distribution intensity, releasing thousands of infected email messages a day to ensure a wide distribution of the malware across the internet.

Bagle also has a vast number of variants. Over 30,000 distinct variants were detected during the report period. 

As each variant, or group of variants, requires a different signature, it is virtually impossible for antivirus engines to keep up with this rapid-fire pace.

Moreover, each variant is distributed in very small quantities or instances. Since an antivirus vendor must be aware of a malware sample in order to analyse it, distribution in low numbers often enables Bagle to "fly below the radar" of traditional antivirus engines.

"The recent burst of 30,000 new distinct variants shows that Bagle has adopted the server-side polymorphic form and is sending intense waves of variants," said Haggai Carmon, vice president of products at Commtouch.

"Most email malware, including Bagle, has adopted this technique to penetrate traditional antivirus solutions by exploiting their signature time lag."


All Enterprise Security Technology

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
ICT Systems Administrator
London, United Kingdom | Feltham City Learning Centre
ICT Systems Administrator - Feltham City Learning Centre - £23,097 - £24,528 A full time ICT Systems Administrator to work in the Feltham City Learning Centre. This role requires a broad range of ICT skills ... more >
I.T Technical Specialist
Inverness, United Kingdom | NHS Scotland
CORPORATE SERVICES E-HEALTH DEPARTMENT  RAIGMORE HOSPITAL INVERNESS TECHNICAL DEVELOPMENT TEAM IT TECHNICAL SPECIALIST  £24,103 to £32,653 PA An exciting opportunity has arisen to join the technical development team within the eHealth Department. We are looking ... more >
IT Development Manager/Project Manager
Guildford, Surrey, United Kingdom | Enstar
 IT Development Manager/IT Development Project manager - Guildford - £40k - £60k plus benefits   Enstar (EU) Limited (formerly Castlewood (EU) Limited) is seeking an IT Development Project Manager and an IT Development Manager to ... more >
Web Content Manager
London, United Kingdom | Royal Borough of Kensington and Chelsea
Web Content Manager - c.£40,000 plus bonus - London   As one of the country's best-performing councils, we're always looking for new ways to improve on excellence. Providing an innovative, high-quality internet site for our ... more >
More job opportunities
Accountancy Age
Active Home
Best Practice
Computeractive
Computing
Computing Business
CRN
Financial Director
Infomatics
Information World Review
IT Week
Management Consultancy
Network IT Week
Personal Computer World
PC Magazine
VNU Web seminars
vnunet.com
Webactive
What PC?
Useful links: About vnu network | Privacy policy | Terms & conditions
Access keys | Top of page | Feedback
VNU Business Publications
© 1995-2008 All rights reserved
VNU Business Publications Ltd., 32-34 Broadwick Street, London, W1A 2HG, is a company registered in England and Wales with company number 01513633
part of part of vnu.net europe