Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Virus and Vulnerability Roundup
Finance
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Nyxem worm programmed to overwrite data files on Feb. 3

'Throwback' malware also travels under name of Kama Sutra
 

Sign up to receive Spam, Malware and Vulnerabilities Resource Alerts

January 23, 2006 (IDG News Service) -- Antivirus vendors are warning of a rapidly spreading worm that is carrying a potentially destructive set of instructions. The Nyxem worm -- also nicknamed the Kama Sutra worm -- is programmed to overwrite all of the files on computers it infects on Feb. 3, said Mikko Hypponen, chief research officer at F-Secure Corp.
F-Secure researchers found the worm truncates files to 20 bytes and causes an error message when one is opened, he said.
"We are expecting to see problems in two weeks' time," Hypponen said.
The worm appears to be programmed to overwrite all files on the third day of every month, Hypponen said. So far, there's no indication where Nyxem originated.
While most antivirus vendors have issued updates for their software, Nyxem is spreading quickly, and its creators have posted a counter on a Web site that records new infections. According to F-Secure's security blog, the counter was showing around 510,000 infections as of Sunday night.
Nyxem infections may be rising because it is taking advantage of computers that have already had their antivirus software disabled by some other virus such as Bagle, Hypponen said.
The worm, which is spread through e-mail, uses a dated technique to entice users by promising pornography, said Graham Cluley, senior technology consultant, at Sophos PLC. Nyxem lacks the sophistication of recent Trojan horse-style viruses that are more targeted and less prevalent in order to evade detection, Cluley said.
Nonetheless, users appear to still be clicking, and the worm was accounting for about 35% of virus traffic as of Monday morning, he said.
"It's a bit of a throwback to an old trick," Cluley said.
The worm harvests e-mail addresses and then sends itself out again. The e-mail subject line may contain text that says "Miss Lebanon 2006" or "School girl fantasies gone bad," according to Sophos.


Reprinted with permission from

IDG.net
Story copyright 2008 International Data Group. All rights reserved.


Print this Story Send Us Feedback E-mail this Story Digg! Digg this Story Slashdot this Story
"Welcome to a special IT Blogwatch EXTRA: as Richi Jennings watches bloggers' reactions to the Russian hackers who claim to..." Read more...
"As if taxpayers needed another reason to scorn the IRS. I read yesterday that the inspector general review of several..." Read more...
Read more Security posts or See all Blogs
Feds considering changes to H-1B application process in wake of report
Exploit code loose for six-month-old Windows bug
With market meltdown, which tech firms become predator or prey?
More top stories...
The Grill: Privacy is a thing of the past, says private investigator
Report: World Bank servers breached repeatedly
Apple asks judge to make iPhone lawsuit moot
Too much junk food, too little exercise and a 24/7 tether to technology? Your body ain't happy, friend. Let us count the pains.
Instruments on the surface of Mars have detected falling snow that is likely evaporating before it reaches the planet.
One positive development stemming from the collapse of Wall Street may be a boost in interest in computer science and IT careers among students who were previously interested in financial services jobs.
Getting new software installed on Linux doesn't have to be hard, but it can differ depending on what you're installing.
Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS.
Four years from now, the IT field will be a vastly different place. Will you be ready?
All Zones
Application Performance Zone
Business Continuity Zone
The File Data Management Zone
Security Management Zone
The SAS Zone
Business Intelligence and Analytics Zone
Windows Protection Zone
The Enterprise Search Zone
Software as a Service Zone
The Security Zone

Ads by TechWords

See your link here
Virtualization: Simplify. Automate. Lower Costs.
Virtualization: Simplify. Automate. Lower Costs.
Watch this complimentary webcast today!
Go to the webcast 
Managing Mobile Data with Endpoint Security for Laptops
Download this white paper now, compliments of Computerworld and Absolute Software.
(Source: Absolute Software) A NetworkWorld survey of IT professionals found that only 1 in 100 employees consistently follow data security policy. This paper outlines endpoint security for laptops that restricts data access beyond encryption to safeguard against insider threats and user error.Read this whitepaper to learn lessons from recent data breaches, limitations of traditional data security, and how to remotely wipe out data and monitor computers that go off the network.
Download this executive briefing download
Top 10 Reasons to Upgrade
Get this white paper now!
(Source: Symantec) Symantec Backup Exec 12 and Backup Exec System Recovery 8 deliver industry leading Windows data protection and system recovery. Download this whitepaper to find out the top reasons to upgrade and how to get continuous data protection and complete system recovery.
Download this white paper go
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
Business Transaction Management: Facilitating the Management of Virtual Environments
Quick Sizing Guide for SAS Grid Running on HP BladeSystems and EVA Storage
Prudential Financial protects its brand with Symantec Data Loss Prevention solutions
View more whitepapers