 |
Security firms crack secret code in sober variant
Security vendors say they have managed to uncover a variant of the sober worm which has been specifically programmed to download an unfamiliar code from different Internet addresses which results in bombardment of digital traffic.
According to Security firm iDefense, a giant number of computers may already be infected by the variant. iDefense claims to have discovered the secret code in a Sober variant that was unearthed back in November and reveals that the unknown code will be downloaded from the web addresses on January 5, 2006.
Incidentally, this date corresponds with the 87th anniversary of the origin of the Nazi Party. iDefense specifies that the date of worm attacks have been synced with politics earlier too seen as another means of spreading propaganda.
Meanwhile, Mikko Hypponen, chief research officer for F-Secure, informed that the worm is likely to download the anonymous code from 14 URLs at four different ISPs.
As a safety measure, F-Secure got in touch with these ISPs, all in Austria and Germany, asking them to block those harmful addresses before the proposed worm attack. Mr. Hypponen confirmed that one of the ISP's has in fact paid heed to their advice.
Further, Hypponen feels that the worm writer's intention is not exactly to make big bucks. The mysterious code has been designed to download propaganda to personal computer and then send similar messages to other computers via the infected PC which will lead to congestion of Internet traffic.
Explaining the modus operandi of the malicious attack, Hypponen states that the sober variant takes the help of an atomic clock to organize the assault. The treacherous URLs are likely to go online only moments before the code is activated on computers. Hypponen revealed that the addresses that were attained by exposing the code are presently not functional.
According to IT consultancy, Morse, not opening e-mail attachments from unknown sources is the best precautionary measure to safeguard your PC and essential personal data.
Sober variants have already attacked innumerable number of computers via bogus e-mails from FBI/ CIA. The worm is subsequently transferred to other computers too through the e-mail addresses gained from the affected PC.
The most spiteful worm to have infected computers this year, Sober was exposed for the first time in October 2003; and has since caused mayhem by appearing in the form of 30 variants, iDefense discloses. It's said to have taken root in Germany, and also spreads in German lingo.
|
|
Written
by :
Jun Shen | Published on :
11:33:01
EST
Sat, 10 Dec 2005 |
Something
to say »
» clean the computer
Why is it not possible to use the update mechanism for the virus to install a program to clean the computer of the virus?!?!
For instance it may be possible to include a program on all of the web addresses that the virus uses to update itself which would download something automatically on the 5th of January to uninstall the virus.
Shurly this would not be impossible?
Commented by ( G Keeves ) on 11:30:55 EST Mon, 12 Dec 2005
|
|
|
|
|
