- 22 July 2004 15:18
Bagle and MyDoom worms gain new family members, Sophos comments
Two new worm variants, W32/Bagle-AI and W32/MyDoom-N, were released in the wild earlier this week, infecting Windows computers around the world at a steady pace. The release of these new worms ensures that these virus families continue to snag new victims with each new variant. Sophos issued protection in the early hours of Tuesday morning.
Bagle-AI is an email-aware worm which forges sender addresses to confuse recipient over the worm's origin. Its subject and message bodies give the impression that the attachment contains pictures, music or information about certain animals, which may suggest that the authors are targeting younger, less security-conscious computer users. This variant of Bagle can sometimes arrive inside a password-protected zip file, where the required password is in the body text, increasing the perception that the email is legitimate.
MyDoom-N, also email-aware, attempts to fool recipients into thinking the message is an automated mail delivery communication. It opens a backdoor onto the infected machine, allowing unauthorised users to access the computer remotely without the user's knowledge. Backdoors can be used by spammers, turning the infected machine into a spam generator, or by hackers intent on stealing sensitive or financial information about the user.
"With new variants of the Bagle and MyDoom families steadily emerging and infecting computers around the globe, it’s vital that businesses keep their anti-virus software updated," said Sean Richmond, Manager, Technical Support, Sophos Australia and New Zealand. "Unlike humans, anti-virus software is not fooled by social engineering tricks such as duping users into double-clicking dangerous attachments.”
Sophos's anti-virus products not only stop known viruses at the gateway, but its threat reduction technology allows you to block all executable code from being delivered to mailboxes, ensuring that future email threats cannot reach the computers and infect them.
Notes for Editors.
About Sophos. Sophos is a world leading specialist developer of anti-virus and anti-spam software. Sophos is headquartered in the UK and protects all types of organisations, including small- to medium-sized businesses, large corporations, banks, governments and educational institutions against viruses and spam. The company is acclaimed for delivering the highest level of customer satisfaction and protection in the industry. Sophos's products, backed by 24 hour support are sold and supported in more than 150 countries.
Sophos's regional head office for Australia and New Zealand is in Sydney and hosts one of the company's three Computer Virus Research and Development Laboratories to provide global support services.
FOR FURTHER INFORMATION: Sean Richmond (email@example.com) is available for comment: +61 2 9409 9100 (tel) +61 2 9409 9191 (fax)
Sophos's press contact at Gotley Nix Evans is: Michael Henderson (firstname.lastname@example.org) +61 2 9957 5555 (tel) +61 413 054 738 (mobile) +61 2 9957 5575 (fax)